CVE-2017-3119
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
11/08/2017
Last modified:
20/04/2025
Description
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in Acrobat/Reader 11.0.19 engine. Successful exploitation could lead to arbitrary code execution.
Impact
Base Score 3.x
8.80
Severity 3.x
HIGH
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* | 11.0.0 (including) | 11.0.21 (excluding) |
| cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:* | 15.000.0000 (including) | 15.006.30355 (excluding) |
| cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:* | 17.000.0000 (including) | 17.011.30066 (including) |
| cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:* | 17.000.0000 (including) | 17.012.20098 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:* | 15.000.0000 (including) | 15.006.30355 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:* | 17.000.0000 (including) | 17.011.30066 (excluding) |
| cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:* | 17.000.0000 (including) | 17.012.20098 (excluding) |
| cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:* | 11.0.0 (including) | 11.0.21 (excluding) |
| cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* | ||
| cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page