CVE-2014-0514

CVE Database · CVE-2014-0514

CVE-2014-0514

· N/AModified

CVSS v3.1

N/A

EPSS

72.00%

Published

Apr 15, 2014

Modified

May 6, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBAdobe Reader for Android 11.1.3 - Arbitrary JavaScript Execution Exploit-DBAdobe Reader for Android < 11.2.0 - 'addJavascriptInterface' Local Overflow (Metasploit)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The Adobe Reader Mobile application before 11.2 for Android does not properly restrict use of JavaScript, which allows remote attackers to execute arbitrary code via a crafted PDF document, a related issue to CVE-2012-6636.

Weaknesses (CWE)

CWE-264

Affected Products (2)

adobe · adobe_readervulnerable

References (18)

http://helpx.adobe.com/security/products/reader-mobile/apsb14-12.html

PatchVendor Advisory

http://packetstormsecurity.com/files/127113/Adobe-Reader-for-Android-addJavascriptInterface-Exploit.html

http://seclists.org/fulldisclosure/2014/Apr/192

Exploit

http://www.exploit-db.com/exploits/32884

http://www.exploit-db.com/exploits/33791

http://www.osvdb.org/105781

http://www.securify.nl/advisory/SFY20140401/adobe_reader_for_android_exposes_insecure_javascript_interfaces.html

Exploit

http://www.securityfocus.com/archive/1/531831/100/0/threaded

http://www.securityfocus.com/bid/66798

KEV Catalog EPSS Scores Vendors All CVEs