CVEs (3,210)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CV...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vul...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors. |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, rela...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability th...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors. |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability th...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vul...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vul...Show more |
3Adobe AppleMicrosoft4Acrobat Acrobat ReaderMac Os X+1 moreMay 6, 2026 Dec 10, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vul...Show more |
cURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cookies for arbitrary sites by setting a cookie for a top-level domain. |
cURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which allows remote attackers to set cookies for or send arbitrary cookies to certain sites, as demonstrated by a site at 192.1...Show more |
The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted applicat...Show more |
CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain se...Show more |
1Apple 5Iphone Os ItunesMac Os X+2 moreMay 6, 2026 Nov 18, 2014 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document. |
The "System Profiler About This Mac" component in Apple OS X before 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote attackers to obtain sensitive information via unspecified vec...Show more |
Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive inform...Show more |
The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a | (pipe...Show more |