CVE-2013-3346
Severity CVSS v4.0:
Pending analysis
Type:
CWE-787
Out-of-bounds Write
Publication date:
30/08/2013
Last modified:
11/04/2025
Description
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* | 9.0 (including) | 9.5.5 (excluding) |
| cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* | 10.0 (including) | 10.1.7 (excluding) |
| cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* | 11.0 (including) | 11.0.03 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* | 9.0 (including) | 9.5.5 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* | 10.0 (including) | 10.1.7 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* | 11.0 (including) | 11.0.03 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.adobe.com/support/security/bulletins/apsb13-15.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19054
- http://www.adobe.com/support/security/bulletins/apsb13-15.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19054