CVE-2014-0521

EUVD-2014-0552
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
adobeacrobat_reader
10.0
adobeacrobat_reader
10.0.1
adobeacrobat_reader
10.0.2
adobeacrobat_reader
10.0.3
adobeacrobat_reader
10.1
adobeacrobat_reader
10.1.1
adobeacrobat_reader
10.1.2
adobeacrobat_reader
10.1.3
adobeacrobat_reader
10.1.4
adobeacrobat_reader
10.1.5
adobeacrobat_reader
10.1.6
adobeacrobat_reader
10.1.7
adobeacrobat_reader
10.1.8
adobeacrobat_reader
10.1.9
adobeacrobat_reader
11.0
adobeacrobat_reader
11.0.1
adobeacrobat_reader
11.0.2
adobeacrobat_reader
11.0.3
adobeacrobat_reader
11.0.4
adobeacrobat_reader
11.0.5
adobeacrobat_reader
11.0.6
adobeacrobat
10.0
adobeacrobat
10.0.1
adobeacrobat
10.0.2
adobeacrobat
10.0.3
adobeacrobat
10.1
adobeacrobat
10.1.1
adobeacrobat
10.1.2
adobeacrobat
10.1.3
adobeacrobat
10.1.4
adobeacrobat
10.1.5
adobeacrobat
10.1.6
adobeacrobat
10.1.7
adobeacrobat
10.1.8
adobeacrobat
10.1.9
adobeacrobat
11.0
adobeacrobat
11.0.1
adobeacrobat
11.0.2
adobeacrobat
11.0.3
adobeacrobat
11.0.4
adobeacrobat
11.0.5
adobeacrobat
11.0.6
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
acroread
lucid
not-affected
precise
not-affected
quantal
not-affected
saucy
dne
trusty
dne
Common Weakness Enumeration
References
http://helpx.adobe.com/security/products/reader/apsb14-15.html
http://helpx.adobe.com/security/products/reader/apsb14-15.html