VYPR
High severity7.8NVD Advisory· Published Jan 11, 2017· Updated Jun 17, 2026

CVE-2017-2948

CVE-2017-2948

Description

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable buffer overflow / underflow vulnerability in the XFA engine. Successful exploitation could lead to arbitrary code execution.

Affected products

6
  • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: <=11.0.18
    • cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*range: <=15.006.30244
    • cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*range: <=15.020.20042
  • cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*+ 1 more
    • cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*range: <=15.006.30244
    • cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*range: <=15.020.20042
  • cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:*
    Range: <=11.0.18

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.