Memory Address Leak Vulnerability in Adobe Acrobat Reader
CVE-2017-3043

5.5MEDIUM

Key Information:

Vendor
Adobe
Status
Adobe Acrobat Reader 11.0.19 And Earlier, 15.006.30280 And Earlier, 15.023.20070 And Earlier.
Vendor
CVE Published:
12 April 2017

Summary

Adobe Acrobat Reader has a vulnerability that allows an attacker to exploit a memory address leak within the collaboration functionality. This issue can potentially expose sensitive information stored in memory, leading to unauthorized access to user data. Versions 11.0.19 and earlier, along with 15.006.30280 and 15.023.20070 and earlier are vulnerable. It is imperative for users to apply the latest patches provided by Adobe to mitigate risks associated with this vulnerability.

Affected Version(s)

Adobe Acrobat Reader 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier. Adobe Acrobat Reader 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier.

References

http://www.securityfocus.com/bid/97554
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1038228
vdb-entryx_refsource_SECTRACK
https://helpx.adobe.com/security/products/acrobat/apsb17-...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2017-3043 : Memory Address Leak Vulnerability in Adobe Acrobat Reader | SecurityVulnerability.io