Out-of-Bounds Read Vulnerability in Adobe Acrobat and Reader
CVE-2017-11307

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Acrobat And Reader 2017.012.20098 And Earlier Versions, 2017.011.30066 And Earlier Versions, 2015.006.30355 And Earlier Versions, 11.0.22 And Earlier Versions
Vendor: CVE Published:; 19 May 2018

Summary

Adobe Acrobat and Reader are affected by an out-of-bounds read vulnerability that could allow an attacker to execute arbitrary code in the context of the current user. This type of vulnerability can be exploited through specially crafted documents, leading to potential unauthorized actions on the system. It is crucial for users to update their software to the latest versions to mitigate the associated risks.

Affected Version(s)

Adobe Acrobat and Reader 2017.012.20098 and earlier , 2017.011.30066 and earlier , 2015.006.30355 and earlier , 11.0.22 and earlier Adobe Acrobat and Reader 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, 11.0.22 and earlier versions

References

https://helpx.adobe.com/security/products/acrobat/apsb17-...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 19, 2018
Vulnerability Reserved
Jul 13, 2017