VYPR
← All advisories
Unrated severityNVD Advisory· Published May 14, 2014· Updated May 6, 2026

CVE-2014-0521

CVE-2014-0521

Description

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document.

Affected products

42
  • Adobe Inc./Acrobat21 versions
    cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:10.1.9:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.5:-:*:*:*:windows:*:*
    • cpe:2.3:a:adobe:acrobat:11.0.6:*:*:*:*:*:*:*
  • Adobe Inc./Acrobat Reader21 versions
    cpe:2.3:a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:10.1.9:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.5:-:*:*:*:windows:*:*
    • cpe:2.3:a:adobe:acrobat_reader:11.0.6:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.