Adobe Reader vulnerabilities
360 known vulnerabilities affecting adobe/reader.
Total CVEs
360
CISA KEV
0
Public exploits
10
Exploited in wild
1
Severity breakdown
CRITICAL199HIGH123MEDIUM31LOW7
Vulnerabilities
Page 2 of 18
CVE-2017-11216HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11216 [HIGH] CWE-119 CVE-2017-11216: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to bitmap transformations. Successful exploitation could lead to arbitrary code ex
nvd
CVE-2017-11221HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11221 [HIGH] CWE-704 CVE-2017-11221: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable type confusion vulnerability in the annotation functionality. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11269HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11269 [HIGH] CWE-119 CVE-2017-11269: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) image stream data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3113HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3113 [HIGH] CWE-416 CVE-2017-3113: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in JavaScript engine when creating large strings. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11257HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11257 [HIGH] CWE-704 CVE-2017-11257: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable type confusion vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11234HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11234 [HIGH] CWE-119 CVE-2017-11234: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing TIFF data related to the way how the components of each pixel are stored. Successful exploitation could lead to arbitrary code
nvd
CVE-2017-3119HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3119 [HIGH] CWE-119 CVE-2017-3119: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in Acrobat/Reader 11.0.19 engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11251HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11251 [HIGH] CWE-119 CVE-2017-11251: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the JPEG 2000 parsing module. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11223HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11223 [HIGH] CWE-416 CVE-2017-11223: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the core of the XFA engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3116HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3116 [HIGH] CWE-119 CVE-2017-3116: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the MakeAccessible plugin when parsing TrueType font data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11262HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11262 [HIGH] CWE-119 CVE-2017-11262: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to drawing ASCII text string. Successful exploitation could lead to arbitrary code
nvd
CVE-2017-11237HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11237 [HIGH] CWE-119 CVE-2017-11237: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the font parsing module. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11231HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11231 [HIGH] CWE-416 CVE-2017-11231: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in Acrobat/Reader rendering engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11218HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11218 [HIGH] CWE-416 CVE-2017-11218: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in XFA event management. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3120HIGHCVSS 8.8≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3120 [HIGH] CWE-416 CVE-2017-3120: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA parsing engine when handling certain types of internal instructions. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11235HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11235 [HIGH] CWE-416 CVE-2017-11235: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the image conversion engine when decompressing JPEG data. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11214HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11214 [HIGH] CWE-119 CVE-2017-11214: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to rendering a path. Successful exploitation could lead to arbitrary code executio
nvd
CVE-2017-11220HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11220 [HIGH] CWE-119 CVE-2017-11220: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable heap overflow vulnerability in an internal data structure. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11222HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11222 [HIGH] CWE-119 CVE-2017-11222: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Product Representation Compact (PRC) engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11268HIGHCVSS 8.8≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11268 [HIGH] CWE-119 CVE-2017-11268: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private JPEG data. Successful exploitation could lead to arbitrary code execution.
nvd