CyberSec.Space Logo
Back to CVE Browser

CVE-2014-0546

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score41.9740%
EPSS Percentile97.30th
PublishedAug 12, 2014
Last ModifiedApr 21, 2026

Vulnerability Description

Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Adobe

Acrobat

>= 10.0 and < 10.1.11
πŸ“¦
Adobe

Acrobat

>= 11.0 and < 11.0.08
πŸ“¦
Adobe

Acrobat Reader

>= 10.0 and < 10.1.11
πŸ“¦
Adobe

Acrobat Reader

>= 11.0 and < 11.0.08

References & Advisories

πŸ”— http://helpx.adobe.com/security/products/reader/apsb14-19.html
πŸ”— http://www.securitytracker.com/id/1030711
πŸ”— http://helpx.adobe.com/security/products/reader/apsb14-19.html
πŸ”— http://www.securitytracker.com/id/1030711
πŸ”— https://github.com/cisagov/vulnrichment/issues/199
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-0546

Related Vulnerabilities

CVE-2004-063110.0

Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions...

CVE-2004-115210.0

Buffer overflow in the mailListIsPdf function in Adobe Acrobat Reader 5.09 for Unix allows remote attackers to execute arbitrary c...

CVE-2004-063010.0

The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those bef...

CVE-2004-115310.0

Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (appl...