Adobe Reader vulnerabilities
360 known vulnerabilities affecting adobe/reader.
Total CVEs
360
CISA KEV
0
Public exploits
10
Exploited in wild
1
Severity breakdown
CRITICAL199HIGH123MEDIUM31LOW7
Vulnerabilities
Page 4 of 18
CVE-2017-11232MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11232 [MEDIUM] CWE-200 CVE-2017-11232: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability when processing Enhanced Metafile Format (EMF) data related to brush manipulation. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3115MEDIUMCVSS 6.5≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3115 [MEDIUM] CWE-200 CVE-2017-3115: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an information disclosure vulnerability when handling links in a PDF document.
nvd
CVE-2017-11239MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11239 [MEDIUM] CWE-119 CVE-2017-11239: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to text strings. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11265MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11265 [MEDIUM] CWE-119 CVE-2017-11265: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Adobe Graphics Manager module. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-11238MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11238 [MEDIUM] CWE-119 CVE-2017-11238: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to curve drawing. Successful exploitation could lead to arbitrary code execution
nvd
CVE-2017-11210MEDIUMCVSS 6.5≥ 11.0.0, ≤ 11.0.202017-08-11
CVE-2017-11210 [MEDIUM] CWE-119 CVE-2017-11210: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the font parsing, where the font is embedded in the XML Paper Specification (XPS) file. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3122MEDIUMCVSS 6.5≥ 11.0.0, < 11.0.212017-08-11
CVE-2017-3122 [MEDIUM] CWE-119 CVE-2017-3122: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earl
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to Bezier curves. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3037CRITICALCVSS 9.8≤ 11.0.192017-04-12
CVE-2017-3037 [CRITICAL] CWE-119 CVE-2017-3037: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in the JavaScript engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3034HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3034 [HIGH] CWE-191 CVE-2017-3034: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the XML Forms Architecture (XFA) engine, related to layout functionality. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3035HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3035 [HIGH] CWE-416 CVE-2017-3035: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable use after free vulnerability in the XML Forms Architecture (XFA) engine. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3013HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3013 [HIGH] CWE-427 CVE-2017-3013: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an insecure library loading (DLL hijacking) vulnerability in a DLL related to remote logging.
nvd
CVE-2017-3054HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3054 [HIGH] CWE-119 CVE-2017-3054: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to manipulation of EMF files. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3030HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3030 [HIGH] CWE-119 CVE-2017-3030: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in the AES module. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3017HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3017 [HIGH] CWE-119 CVE-2017-3017: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability when handling a malformed PDF file. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3024HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3024 [HIGH] CWE-119 CVE-2017-3024: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability when manipulating PDF annotations. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3025HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3025 [HIGH] CWE-119 CVE-2017-3025: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability related to internal object representation manipulation. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3011HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3011 [HIGH] CWE-190 CVE-2017-3011: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the CCITT fax PDF filter. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3026HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3026 [HIGH] CWE-416 CVE-2017-3026: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable use after free vulnerability when manipulating an internal data structure. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3028HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3028 [HIGH] CWE-119 CVE-2017-3028: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in the image conversion module, related to processing of TIFF files. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2017-3047HIGHCVSS 7.8≤ 11.0.192017-04-12
CVE-2017-3047 [HIGH] CWE-416 CVE-2017-3047: Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlie
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable use after free vulnerability in the JavaScript engine's annotation-related API. Successful exploitation could lead to arbitrary code execution.
nvd