cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-39379,https://securityvulnerability.io/vulnerability/CVE-2024-39379,Adobe Acrobat Vulnerable to Arbitrary File System Read Access,"Acrobat for Edge versions 126.0.2592.81 and earlier are affected by an out-of-bounds read vulnerability that could lead to arbitrary file system read access. An attacker could exploit this vulnerability to read contents from a location in memory past the buffer boundary, potentially leading to sensitive information disclosure. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Acrobat For Edge,5.5,MEDIUM,0.000699999975040555,false,,false,false,false,,,false,false,,2024-07-31T12:51:50.268Z,0
CVE-2024-34122,https://securityvulnerability.io/vulnerability/CVE-2024-34122,T5 Acrobat Vulnerability - Exploitable crash in DecodeTile,"The vulnerability, present in Acrobat for Edge versions 126.0.2592.68 and earlier, allows for an out-of-bounds read condition during the parsing of crafted files. This weakness can potentially lead to a read operation beyond the limits of an allocated memory structure. An attacker may exploit this vulnerability to execute arbitrary code within the context of the user. Notably, successful exploitation requires user interaction, as it necessitates that the victim open a specially designed malicious file.",Adobe,Acrobat For Edge,7.8,HIGH,0.00046999999904073775,false,,false,false,false,,,false,false,,2024-07-02T14:15:00.000Z,0
CVE-2024-20709,https://securityvulnerability.io/vulnerability/CVE-2024-20709,New Edge T5 MSRC Case [DCMSFT-1081],Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.,Adobe,Acrobat for Edge,5.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2024-01-15T12:13:10.365Z,0
CVE-2024-20721,https://securityvulnerability.io/vulnerability/CVE-2024-20721,T5 Acrobat JS vulnerability - Exploitable crash via t5::javascript::get_page_num_words,Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.,Adobe,Acrobat for Edge,5.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2024-01-15T12:13:09.558Z,0
CVE-2023-44323,https://securityvulnerability.io/vulnerability/CVE-2023-44323,PDF Jbig2 memory-corruption Vulnerability - MSFT T5,Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.,Adobe,Acrobat for Edge,5.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2023-10-30T15:15:00.000Z,0