CVE-2014-8450
Current Description
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2015-4449, CVE-2015-4450, CVE-2015-5088, CVE-2015-5089, and CVE-2015-5092.
Basic Data
| Published | July 15, 2015 |
|---|
| Last Modified | May 13, 2020 |
|---|
| Assigner | cve@mitre.org |
|---|
| Data Type | CVE |
|---|
| Data Format | MITRE |
|---|
| Data Version | 4.0 |
|---|
| Problem Type | CWE-200 |
|---|
| CVE Data Version | 4.0 |
|---|
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:P/I:N/A:N |
|---|
| CVSS 2 - Access Vector | NETWORK |
|---|
| CVSS 2 - Access Complexity | LOW |
|---|
| CVSS 2 - Authentication | NONE |
|---|
| CVSS 2 - Confidentiality Impact | PARTIAL |
|---|
| CVSS 2 - Availability Impact | NONE |
|---|
| CVSS 2 - Base Score | 5.0 |
|---|
| Severity | MEDIUM |
|---|
| Exploitability Score | 10.0 |
|---|
| Impact Score | 2.9 |
|---|
| Obtain All Privilege | false |
|---|
| Obtain User Privilege | false |
|---|
| Obtain Other Privilege | false |
|---|
Base Metric V3
No data provided.
Configurations
-
AND
-
OR - Configuration 1
| Cpe Version | Part | Vendor | Product | Version | Update | Edition | Language | SW Edition | Target SW | Target HW | Other | Version Start Including | Version End Including | Version Start Excluding | Version End Excluding |
|---|
| 2.3 | Application | Adobe | Acrobat | * | * | * | * | * | * | * | * | 10.0 | � | � | 10.1.15 |
| 2.3 | Application | Adobe | Acrobat | * | * | * | * | * | * | * | * | 11.0.0 | � | � | 11.0.12 |
| 2.3 | Application | Adobe | Acrobat Dc | * | * | * | * | classic | * | * | * | 15.006.30033 | � | � | 15.006.30060 |
| 2.3 | Application | Adobe | Acrobat Dc | * | * | * | * | continuous | * | * | * | 15.007.20033 | � | � | 15.008.20082 |
| 2.3 | Application | Adobe | Acrobat Reader | * | * | * | * | * | * | * | * | 10.0 | � | � | 10.1.15 |
| 2.3 | Application | Adobe | Acrobat Reader | * | * | * | * | * | * | * | * | 11.0.0 | � | � | 11.0.12 |
| 2.3 | Application | Adobe | Acrobat Reader Dc | * | * | * | * | classic | * | * | * | 15.006.30033 | � | � | 15.006.30060 |
| 2.3 | Application | Adobe | Acrobat Reader Dc | * | * | * | * | continuous | * | * | * | 15.007.20033 | � | � | 15.008.20082 |
-
OR Running on/with:
| Cpe Version | Part | Vendor | Product | Version | Update | Edition | Language | SW Edition | Target SW | Target HW | Other | Version Start Including | Version End Including | Version Start Excluding | Version End Excluding |
|---|
| 2.3 | OS | Apple | Mac Os | - | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | OS | Microsoft | Windows | - | * | * | * | * | * | * | * | � | � | � | � |
Vulnerable Software List
References
| Name | Source | URL | Tags |
|---|
| 75742 | http://www.securityfocus.com/bid/75742 | BID | Third Party Advisory VDB Entry |
| 1032892 | http://www.securitytracker.com/id/1032892 | SECTRACK | Third Party Advisory VDB Entry |
| https://helpx.adobe.com/security/products/reader/apsb15-15.html | https://helpx.adobe.com/security/products/reader/apsb15-15.html | CONFIRM | PATCH Vendor Advisory |
Follow @discotekdotca