Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Adobe Acrobat Reader DC XFA Template Use-After-Free Remote Code Execution Vulnerability
Vulnerability Description
Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020.001.30025 (and earlier) and 2017.011.30196 (and earlier) are affected by an Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
释放后使用
Vulnerability Title
Adobe Acrobat Reader 资源管理错误漏洞
Vulnerability Description
Adobe Acrobat Reader是美国奥多比(Adobe)公司的一款PDF查看器。该软件用于打印,签名和注释 PDF。 Adobe Acrobat Reader DC存在资源管理错误漏洞,该漏洞源于Acrobat Reader DC存在一个边界条件。远程攻击者可利用该漏洞创建一个特殊设计的PDF文件,诱骗受害者打开。该漏洞允许远程攻击者危及受影响的系统。以下产品和版本的影响:Adobe Acrobat Reader DC: 2020.001.30020, 2020.001.30025, 2020.
CVSS Information
N/A
Vulnerability Type
N/A