CVE-2017-3010
CRITICALAdobe Acrobat and Reader <= 11.0.18, 15.006.30244, 15.020.20042 - Memory Corruption in Rendering Engine
Title source: llmDescription
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead to arbitrary code execution.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/97306
Vendor Advisory x_refsource_confirm
https://helpx.adobe.com/security/products/acrobat/apsb17-01.html
Scores
CVSS v3
9.8
EPSS
0.0455
EPSS Percentile
90.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (7)
adobe/acrobat
11.0.0 - 11.0.18
adobe/acrobat_dc
15.000.0000 - 15.006.30244
adobe/acrobat_dc
15.000.0000 - 15.020.20042
adobe/acrobat_reader_dc
15.000.0000 - 15.006.30244
adobe/acrobat_reader_dc
15.000.0000 - 15.020.20042
adobe/reader
11.0.0 - 11.0.18
n/a/Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.
Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.
Published
Mar 31, 2017
Tracked Since
Feb 18, 2026