Medium severity6.5NVD Advisory· Published Aug 11, 2017· Updated Jun 17, 2026
CVE-2017-11236
CVE-2017-11236
Description
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the internal handling of UTF-16 literal strings. Successful exploitation could lead to arbitrary code execution.
Affected products
9cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: >=11.0.0,<=11.0.20
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*range: >=15.006.30060,<=15.006.30306
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*range: >=15.007.20033,<=17.009.20058
- cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*range: >=17.011.00000,<=17.011.30066
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*+ 2 more
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*range: >=15.006.30060,<=15.006.30306
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*range: >=15.007.20033,<=17.009.20058
- (no CPE)range: <=2017.009.20058, <=2017.008.30051, <=2015.006.30306, <=11.0.20
- Adobe Systems Incorporated/Acrobat Readerv5Range: 2017.009.20058 and earlier
Patches
Vulnerability mechanics
References
3- helpx.adobe.com/security/products/acrobat/apsb17-24.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/100184nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039098nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.