Vulnerabilities > Adobe > Acrobat Reader > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-09-29 CVE-2021-39853 NULL Pointer Dereference vulnerability in Adobe products
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability.
local
low complexity
adobe CWE-476
5.5
2021-09-29 CVE-2021-39855 Information Exposure vulnerability in Adobe products
Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability.
network
low complexity
adobe CWE-200
6.5
2021-09-29 CVE-2021-39856 Information Exposure vulnerability in Adobe products
Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability.
network
low complexity
adobe CWE-200
6.5
2021-09-29 CVE-2021-39860 NULL Pointer Dereference vulnerability in Adobe products
Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability.
local
low complexity
adobe CWE-476
5.5
2021-09-29 CVE-2021-39861 Out-of-bounds Read vulnerability in Adobe products
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the current user.
local
low complexity
adobe CWE-125
5.5
2021-09-02 CVE-2021-28557 Out-of-bounds Read vulnerability in Adobe products
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by an Out-of-bounds Read vulnerability.
network
low complexity
adobe CWE-125
4.3
2021-09-02 CVE-2021-28559 Privacy Violation vulnerability in Adobe products
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by an Information Exposure vulnerability.
network
low complexity
adobe CWE-359
5.3
2021-04-01 CVE-2021-28546 Missing Support for Integrity Check vulnerability in Adobe products
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are missing support for an integrity check.
network
low complexity
adobe CWE-353
6.5
2021-02-23 CVE-2020-29075 Information Exposure vulnerability in Adobe products
Acrobat Reader DC versions 2020.013.20066 (and earlier), 2020.001.30010 (and earlier) and 2017.011.30180 (and earlier) are affected by an information exposure vulnerability, that could enable an attacker to get a DNS interaction and track if the user has opened or closed a PDF file when loaded from the filesystem without a prompt.
network
low complexity
adobe CWE-200
6.5
2021-02-11 CVE-2021-21060 Improper Input Validation vulnerability in Adobe products
Adobe Acrobat Pro DC versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an improper input validation vulnerability.
local
low complexity
adobe CWE-20
4.6