10

CVE-2015-3068

Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on JavaScript API execution via unspecified vectors, a different vulnerability than CVE-2015-3060, CVE-2015-3061, CVE-2015-3062, CVE-2015-3063, CVE-2015-3064, CVE-2015-3065, CVE-2015-3066, CVE-2015-3067, CVE-2015-3069, CVE-2015-3071, CVE-2015-3072, CVE-2015-3073, and CVE-2015-3074.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeAcrobat Version10.1.0
AdobeAcrobat Version10.1.1
AdobeAcrobat Version10.1.2
AdobeAcrobat Version10.1.3
AdobeAcrobat Version10.1.4
AdobeAcrobat Version10.1.5
AdobeAcrobat Version10.1.6
AdobeAcrobat Version10.1.7
AdobeAcrobat Version10.1.8
AdobeAcrobat Version10.1.9
AdobeAcrobat Version10.1.10
AdobeAcrobat Version10.1.11
AdobeAcrobat Version10.1.12
AdobeAcrobat Version10.1.13
AdobeAcrobat Version11.0.0
AdobeAcrobat Version11.0.1
AdobeAcrobat Version11.0.2
AdobeAcrobat Version11.0.3
AdobeAcrobat Version11.0.4
AdobeAcrobat Version11.0.5
AdobeAcrobat Version11.0.6
AdobeAcrobat Version11.0.7
AdobeAcrobat Version11.0.8
AdobeAcrobat Version11.0.9
AdobeAcrobat Version11.0.10
AdobeAcrobat Reader Version10.1.0
AdobeAcrobat Reader Version10.1.1
AdobeAcrobat Reader Version10.1.2
AdobeAcrobat Reader Version10.1.3
AdobeAcrobat Reader Version10.1.4
AdobeAcrobat Reader Version10.1.5
AdobeAcrobat Reader Version10.1.6
AdobeAcrobat Reader Version10.1.7
AdobeAcrobat Reader Version10.1.8
AdobeAcrobat Reader Version10.1.9
AdobeAcrobat Reader Version10.1.10
AdobeAcrobat Reader Version10.1.11
AdobeAcrobat Reader Version10.1.12
AdobeAcrobat Reader Version10.1.13
AdobeAcrobat Reader Version11.0.0
AdobeAcrobat Reader Version11.0.1
AdobeAcrobat Reader Version11.0.2
AdobeAcrobat Reader Version11.0.3
AdobeAcrobat Reader Version11.0.4
AdobeAcrobat Reader Version11.0.5
AdobeAcrobat Reader Version11.0.6
AdobeAcrobat Reader Version11.0.7
AdobeAcrobat Reader Version11.0.8
AdobeAcrobat Reader Version11.0.9
AdobeAcrobat Reader Version11.0.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 9.92% 0.95
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securitytracker.com/id/1032284
Third Party Advisory
VDB Entry
https://helpx.adobe.com/security/products/reader/apsb15-10.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/74604
Third Party Advisory
VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-202
Third Party Advisory
VDB Entry