Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-11293

An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution.

Published

2017-12-09T06:29:00.523

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-119
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application adobe acrobat ≤ 11.0.22 Yes
Application adobe acrobat ≤ 17.011.30066 Yes
Application adobe acrobat_dc ≤ 17.012.20098 Yes
Application adobe acrobat_dc ≤ 15.006.30355 Yes
Application adobe acrobat_reader ≤ 11.0.22 Yes
Application adobe acrobat_reader ≤ 17.011.30066 Yes
Application adobe acrobat_reader_dc ≤ 17.012.20098 Yes
Application adobe acrobat_reader_dc ≤ 15.006.30355 Yes
References