CVE-2014-0546

CRITICAL KEV

Adobe Reader/Acrobat <10.1.11-11.0.08 - Privilege Escalation

Title source: llm

Description

Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors.

References (4)

[Patch, Vendor Advisory] http://helpx.adobe.com/security/products/reader/apsb14-19.html

[Broken Link, Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030711

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-0546

[Issue Tracking] https://github.com/cisagov/vulnrichment/issues/199

Scores

CVSS v3 9.8

EPSS 0.2844

EPSS Percentile 96.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-05-25

VulnCheck KEV 2014-08-12

InTheWild.io 2014-08-12

ENISA EUVD EUVD-2014-0577

Status published

Products (2)

adobe/acrobat 10.0 - 10.1.11

adobe/acrobat_reader 10.0 - 10.1.11

Published Aug 12, 2014

KEV Added May 25, 2022

Tracked Since Feb 18, 2026