CVE-2013-2729
KEV
🔴 Łataj teraz
Przepełnienie całkowite w Adobe Reader i Acrobat umożliwia zdalne wykonanie kodu.
CVSS
9.8
EPSS
89.6%
Exploit
weaponized
Vendor
redhat
Opis źródłowy (NVD)
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2727.
brak
Brak patcha
Źródła i daty
| Źródło | Wartość |
|---|---|
| NVD – CVSS | 9.8 |
| CISA KEV (aktywnie wykorzystywane) | Tak |
| FIRST EPSS (prawdopodobieństwo exploita) | 89.6% |
| Opublikowano (NVD) | 2013-05-16 11:45:31 UTC |
| Ostatnia modyfikacja (NVD) | 2026-04-22 12:09:40 UTC |
Referencje
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.html (psirt@adobe.com) [Mailing List, Third Party Advisory]
- http://rhn.redhat.com/errata/RHSA-2013-0826.html (psirt@adobe.com) [Third Party Advisory]
- http://security.gentoo.org/glsa/glsa-201308-03.xml (psirt@adobe.com) [Third Party Advisory]
- http://www.adobe.com/support/security/bulletins/apsb13-15.html (psirt@adobe.com) [Not Applicable, Patch, Vendor Advisory]
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16717 (psirt@adobe.com) [Broken Link]
- https://github.com/cisagov/vulnrichment/issues/199 (134c704f-9b21-4f2e-91b3-4a467353bcc0) [Issue Tracking]
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2729 (134c704f-9b21-4f2e-91b3-4a467353bcc0) [US Government Resource]