CVE-2014-8450

Current Description

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2015-4449, CVE-2015-4450, CVE-2015-5088, CVE-2015-5089, and CVE-2015-5092.

Referenced by CVEs:CVE-2015-4449, CVE-2015-4450, CVE-2015-5088, CVE-2015-5089, CVE-2015-5092

Basic Data

PublishedJuly 15, 2015
Last ModifiedMay 13, 2020
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-200
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationAdobeAcrobat********10.010.1.15
      2.3ApplicationAdobeAcrobat********11.0.011.0.12
      2.3ApplicationAdobeAcrobat Dc****classic***15.006.3003315.006.30060
      2.3ApplicationAdobeAcrobat Dc****continuous***15.007.2003315.008.20082
      2.3ApplicationAdobeAcrobat Reader********10.010.1.15
      2.3ApplicationAdobeAcrobat Reader********11.0.011.0.12
      2.3ApplicationAdobeAcrobat Reader Dc****classic***15.006.3003315.006.30060
      2.3ApplicationAdobeAcrobat Reader Dc****continuous***15.007.2003315.008.20082
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSAppleMac Os-*******
      2.3OSMicrosoftWindows-*******

Vulnerable Software List

VendorProductVersions
Adobe Acrobat Dc *
Adobe Acrobat Reader Dc *
Adobe Acrobat *
Adobe Acrobat Reader *

References

NameSourceURLTags
75742http://www.securityfocus.com/bid/75742BIDThird Party Advisory VDB Entry
1032892http://www.securitytracker.com/id/1032892SECTRACKThird Party Advisory VDB Entry
https://helpx.adobe.com/security/products/reader/apsb15-15.htmlhttps://helpx.adobe.com/security/products/reader/apsb15-15.htmlCONFIRMPATCH Vendor Advisory