Adobe Acrobat
| ID | Bug Type | Impact | Severity | CVE # | Related APIs |
|---|---|---|---|---|---|
| 1 | use-after-free | arbitrary code execution | High | CVE-2020-3748 | Annot.page |
| 2 | use-after-free | arbitrary code execution | High | CVE-2021-21035 | Annot.popupOpen ... |
| 3 | use-after-free | arbitrary code execution | High | CVE-2021-21033 | Annot.setProps |
| 4 | use-after-free | arbitrary code execution | High | CVE-2021-21028 | Annot.getProps ... |
| 5 | use-after-free | arbitrary code execution | High | CVE-2021-21021 | Doc.getAnnots |
| 6 | use-after-free | arbitrary code execution | High | CVE-2021-35981 | App.LanchURL |
| 7 | use-after-free | arbitrary code execution | High | CVE-2021-28635 | Doc.addField |
| 8 | heap buffer overflow | arbitrary code execution | High | CVE-2021-28638 | Doc.zoomType |
| 9 | stack buffer overflow | arbitrary code execution | High | CVE-2020-3799 | Doc.getNthFieldName ... |
| 10 | buffer error | arbitrary code execution | High | CVE-2020-9698 | - |
| 11 | buffer error | arbitrary code execution | High | CVE-2020-9699 | - |
| 12 | buffer error | arbitrary code execution | High | CVE-2020-9700 | - |
| 13 | buffer error | arbitrary code execution | High | CVE-2020-9701 | Doc.getLegalWarnings |
| 14 | buffer error | arbitrary code execution | High | CVE-2020-9704 | Doc.exportAsFDFStr |
| 15 | heap buffer overflow | arbitrary code execution | High | CVE-2021-28561 | Doc.zoomType |
| 16 | null pointer deference | denial-of-service | Moderate | CVE-2021-39849 | Annot.stateModel |
| 17 | null pointer deference | denial-of-service | Moderate | CVE-2021-39850 | Annot.setProps ... |
| 18 | null pointer deference | denial-of-service | Moderate | CVE-2021-39851 | Annot.popupOpen |
| 19 | null pointer deference | denial-of-service | Moderate | CVE-2021-39852 | Field.getItemAt ... |
| 20 | null pointer deference | denial-of-service | Moderate | CVE-2021-39853 | - |
| 21 | null pointer deference | denial-of-service | Moderate | CVE-2021-39854 | Doc.zoomType |
| 22 | stack exhaustion | denial-of-service | Moderate | CVE-2020-9702 | Doc.getLegalWarnings |
| 23 | stack exhaustion | denial-of-service | Moderate | CVE-2020-9703 | Doc.layout ... |
Foxit Reader
| ID | Bug Type | Impact | Severity | CVE # | Related APIs |
|---|---|---|---|---|---|
| 1 | use-after-free | arbitrary code execution | High | CVE-2021-31441 | Annot.destroy |
| 2 | use-after-free | arbitrary code execution | High | CVE-2021-31451 | Annot.destroy |
| 3 | use-after-free | arbitrary code execution | High | CVE-2021-31456 | Annot.popupOpen ... |
| 4 | use-after-free | arbitrary code execution | High | CVE-2021-31457 | Annot.destroy |
| 5 | use-after-free | arbitrary code execution | High | CVE-2021-31458 | Annot.destroy |
| 6 | use-after-free | arbitrary code execution | High | CVE-2021-34831 | Field.richText ... |
| 7 | use-after-free | arbitrary code execution | High | CVE-2021-34832 | Annot.readonly ... |
| 8 | use-after-free | arbitrary code execution | High | CVE-2021-34852 | Field.delay ... |
| 9 | use-after-free | arbitrary code execution | High | CVE-2021-34974 | Annot.delay ... |
| 10 | use-after-free | arbitrary code execution | High | CVE-2021-34975 | Annot.trasitionToStat ... |