Adobe Acrobat Reader up to 11.0.17/15.006.30201/15.017.20053 memory corruption

A vulnerability has been found in Adobe Acrobat Reader up to 11.0.17/15.006.30201/15.017.20053 (Document Reader Software) and classified as critical. This vulnerability affects an unknown code block. Upgrading to version 11.0.18, 15.006.30243 or 15.020.20039 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

173

Field

vulnerability_cvss3_meta_tempscore2
source_nessus_risk1
vulnerability_cvss2_nvd_basescore1
source_cve_nvd_summary1
source_securityfocus_class1

Commit Conf

100%76
90%9
70%2
98%1

Approve Conf

100%76
90%9
70%2
98%1
IDCommitedUserFieldChangeRemarksAcceptedReasonC
1302295009/23/2022VulD...nessus_riskCriticaltenable.com09/23/2022accepted
70
1302294909/23/2022VulD...cvss2_nvd_basescore10.0nist.gov09/23/2022accepted
90
1302294809/23/2022VulD...cvss3_meta_tempscore7.9see CVSS documentation09/23/2022accepted
90
1302294709/23/2022VulD...cve_nvd_summaryAdobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-6940, CVE-2016-6941, CVE-2016-6942, CVE-2016-6943, CVE-2016-6947, CVE-2016-6948, CVE-2016-6950, CVE-2016-6951, CVE-2016-6954, CVE-2016-6955, CVE-2016-6956, CVE-2016-6959, CVE-2016-6960, CVE-2016-6970, CVE-2016-6972, CVE-2016-6973, CVE-2016-6974, CVE-2016-6975, CVE-2016-6976, CVE-2016-6977, CVE-2016-6978, CVE-2016-6995, CVE-2016-6996, CVE-2016-6997, CVE-2016-6998, CVE-2016-7000, CVE-2016-7001, CVE-2016-7002, CVE-2016-7003, CVE-2016-7004, CVE-2016-7005, CVE-2016-7006, CVE-2016-7007, CVE-2016-7008, CVE-2016-7009, CVE-2016-7010, CVE-2016-7011, CVE-2016-7012, CVE-2016-7013, CVE-2016-7014, CVE-2016-7015, CVE-2016-7016, CVE-2016-7017, CVE-2016-7018, and CVE-2016-7019.cve.mitre.org09/23/2022accepted
70
608949504/07/2017VulD...securityfocus_classInput Validation Errorsecurityfocus.com04/07/2017accepted
100
608949404/07/2017VulD...securityfocus_date1476144000 (10/11/2016)securityfocus.com04/07/2017accepted
100
608949304/07/2017VulD...securityfocus93496securityfocus.com04/07/2017accepted
100
608949104/07/2017VulD...cve_assigned1471910400 (08/23/2016)cve.org04/07/2017accepted
100
608948204/07/2017VulD...confirm_urlhttps://helpx.adobe.com/security/products/acrobat/apsb16-33.htmlhelpx.adobe.com04/07/2017accepted
100
608948104/07/2017VulD...company_nameFortinet's FortiGuard Labs04/07/2017accepted
100
608948004/07/2017VulD...person_nameSebastian Apelt04/07/2017accepted
100
608947404/07/2017VulD...cvss3_nvd_aHnist.gov04/07/2017accepted
100
608947304/07/2017VulD...cvss3_nvd_iHnist.gov04/07/2017accepted
100
608947204/07/2017VulD...cvss3_nvd_cHnist.gov04/07/2017accepted
100
608947104/07/2017VulD...cvss3_nvd_sUnist.gov04/07/2017accepted
100
608947004/07/2017VulD...cvss3_nvd_uiNnist.gov04/07/2017accepted
100
608946904/07/2017VulD...cvss3_nvd_prNnist.gov04/07/2017accepted
100
608946804/07/2017VulD...cvss3_nvd_acLnist.gov04/07/2017accepted
100
608946704/07/2017VulD...cvss3_nvd_avNnist.gov04/07/2017accepted
100
608951710/13/2016VulD...cvss3_nvd_basescore9.8nist.gov10/13/2016accepted
90

68 more entries are not shown

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!