CVE-2017-3010

CRITICAL

Adobe Acrobat and Reader <= 11.0.18, 15.006.30244, 15.020.20042 - Memory Corruption in Rendering Engine

Title source: llm
STIX 2.1

Description

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead to arbitrary code execution.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/97306

Scores

CVSS v3 9.8
EPSS 0.0455
EPSS Percentile 90.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (7)
adobe/acrobat 11.0.0 - 11.0.18
adobe/acrobat_dc 15.000.0000 - 15.006.30244
adobe/acrobat_dc 15.000.0000 - 15.020.20042
adobe/acrobat_reader_dc 15.000.0000 - 15.006.30244
adobe/acrobat_reader_dc 15.000.0000 - 15.020.20042
adobe/reader 11.0.0 - 11.0.18
n/a/Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier. Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.
Published Mar 31, 2017
Tracked Since Feb 18, 2026