CVE-2017-11235

CVE Database · CVE-2017-11235

CVE-2017-11235

· N/AModified

CVSS v3.1

N/A

EPSS

7.97%

Published

Aug 11, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the image conversion engine when decompressing JPEG data. Successful exploitation could lead to arbitrary code execution.

Weaknesses (CWE)

CWE-416

Affected Products (10)

adobe · acrobatvulnerable

adobe · acrobat_dcvulnerable

adobe · acrobat_readervulnerable

adobe · acrobat_reader_dcvulnerable

adobe · readervulnerable

apple · mac_os_x

microsoft · windows

References (6)

http://www.securityfocus.com/bid/100182