Adobe Acrobat vulnerabilities
1,356 known vulnerabilities affecting adobe/acrobat.
Total CVEs
1,356
CISA KEV
23
actively exploited
Public exploits
43
Exploited in wild
27
Severity breakdown
CRITICAL540HIGH476MEDIUM316LOW24
Vulnerabilities
Page 28 of 68
CVE-2017-11218HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11218 [HIGH] CWE-416 CVE-2017-11218: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in XFA event management. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3120HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3120 [HIGH] CWE-416 CVE-2017-3120: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA parsing engine when handling certain types of internal instructions. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11235HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11235 [HIGH] CWE-416 CVE-2017-11235: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the image conversion engine when decompressing JPEG data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11214HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11214 [HIGH] CWE-119 CVE-2017-11214: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to rendering a path. Successful exploitation could lead to arbitrary code executio
nvd
CVE-2017-11220HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11220 [HIGH] CWE-119 CVE-2017-11220: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable heap overflow vulnerability in an internal data structure. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11222HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11222 [HIGH] CWE-119 CVE-2017-11222: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Product Representation Compact (PRC) engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11268HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11268 [HIGH] CWE-119 CVE-2017-11268: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private JPEG data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3123HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3123 [HIGH] CWE-119 CVE-2017-3123: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data drawing position definition. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11267HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11267 [HIGH] CWE-119 CVE-2017-11267: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private data interpreted as JPEG data. Successful exploitation could lead to arbitrary code exe
nvd
CVE-2017-11226HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11226 [HIGH] CWE-119 CVE-2017-11226: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image processing engine when processing JPEG 2000 (JP2) code stream data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11229HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11229 [HIGH] CVE-2017-11229: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has a security bypass vulnerability when manipulating Forms Data Format (FDF).
nvd
CVE-2017-11248MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11248 [MEDIUM] CWE-119 CVE-2017-11248: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to pixel block transfer. Successful exploitation could lead to arbitrary code ex
nvd
CVE-2017-11209MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11209 [MEDIUM] CWE-119 CVE-2017-11209: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability that occurs when reading a JPEG file embedded within XML Paper Specification (XPS) file. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11242MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11242 [MEDIUM] CWE-119 CVE-2017-11242: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to line segments. Successful exploitation could lead to arbitrary code execution
nvd
CVE-2017-3118MEDIUMCVSS 6.5≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3118 [MEDIUM] CWE-200 CVE-2017-3118: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has a security bypass vulnerability related to execution of malicious attachments.
nvd
CVE-2017-11252MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11252 [MEDIUM] CWE-119 CVE-2017-11252: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Adobe Graphics Manager (AGM) module. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11233MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11233 [MEDIUM] CWE-119 CVE-2017-11233: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to block transfer of pixels. Successful exploitation could lead to arbitrary cod
nvd
CVE-2017-11246MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11246 [MEDIUM] CWE-119 CVE-2017-11246: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when parsing JPEG data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11230MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11230 [MEDIUM] CWE-119 CVE-2017-11230: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the JPEG 2000 engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11243MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.20≥ 17.011.00000, ≤ 17.011.300662017-08-11
CVE-2017-11243 [MEDIUM] CWE-119 CVE-2017-11243: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the XSLT engine. Successful exploitation could lead to arbitrary code execution.
nvd