What is the severity of CVE-2017-11293?

CVE-2017-11293 is classified as a critical memory corruption vulnerability affecting various versions of Adobe Acrobat and Reader.

How do I fix CVE-2017-11293?

To mitigate CVE-2017-11293, users should update Adobe Acrobat and Reader to the latest version offered by Adobe.

What versions are affected by CVE-2017-11293?

CVE-2017-11293 affects Adobe Acrobat and Reader versions including 2017.012.20098 and earlier, 2017.011.30066 and earlier, 2015.006.30355 and earlier, and 11.0.22 and earlier.

What kind of vulnerability is CVE-2017-11293?

CVE-2017-11293 is a memory corruption vulnerability that can be exploited for arbitrary code execution.

What are the potential impacts of exploiting CVE-2017-11293?

Successful exploitation of CVE-2017-11293 could lead to complete system compromise and unauthorized actions on the victim's machine.

Vulnerability/
CVE-2017-11293

critical

CWE

119

9/12/2017

22/12/2017

CVE-2017-11293: Buffer Overflow

First published: Sat Dec 09 2017(Updated: )

An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader	<=11.0.22
Adobe Acrobat Reader	>=17.0<=17.011.30066
Adobe Acrobat Reader	>=-<=17.012.20098
Adobe Acrobat Reader	>=15.0<=15.006.30355
Adobe Acrobat Reader Notification Manager	<=11.0.22
Adobe Acrobat Reader Notification Manager	>=17.0<=17.011.30066
Adobe Acrobat Reader Notification Manager	>=-<=17.012.20098
Adobe Acrobat Reader Notification Manager	>=15.0<=15.006.30355

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-11293?
CVE-2017-11293 is classified as a critical memory corruption vulnerability affecting various versions of Adobe Acrobat and Reader.
How do I fix CVE-2017-11293?
To mitigate CVE-2017-11293, users should update Adobe Acrobat and Reader to the latest version offered by Adobe.
What versions are affected by CVE-2017-11293?
CVE-2017-11293 affects Adobe Acrobat and Reader versions including 2017.012.20098 and earlier, 2017.011.30066 and earlier, 2015.006.30355 and earlier, and 11.0.22 and earlier.
What kind of vulnerability is CVE-2017-11293?
CVE-2017-11293 is a memory corruption vulnerability that can be exploited for arbitrary code execution.
What are the potential impacts of exploiting CVE-2017-11293?
Successful exploitation of CVE-2017-11293 could lead to complete system compromise and unauthorized actions on the victim's machine.

agent/references
agent/first-publish-date
agent/last-modified-date
agent/type
agent/severity
agent/weakness
agent/author
agent/description
agent/event
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/adobe acrobat reader
version/adobe acrobat reader/11.0.22
version/adobe acrobat reader/17.0
version/adobe acrobat reader/17.011.30066
version/adobe acrobat reader/-
version/adobe acrobat reader/17.012.20098
version/adobe acrobat reader/15.0
version/adobe acrobat reader/15.006.30355
canonical/adobe acrobat reader notification manager
version/adobe acrobat reader notification manager/11.0.22
version/adobe acrobat reader notification manager/17.0
version/adobe acrobat reader notification manager/17.011.30066
version/adobe acrobat reader notification manager/-
version/adobe acrobat reader notification manager/17.012.20098
version/adobe acrobat reader notification manager/15.0
version/adobe acrobat reader notification manager/15.006.30355