CVE-2017-3027

CVE Database · CVE-2017-3027

CVE-2017-3027

· N/AModified

CVSS v3.1

N/A

EPSS

4.07%

Published

Apr 12, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable use after free vulnerability in the XFA module, related to the choiceList element. Successful exploitation could lead to arbitrary code execution.

Weaknesses (CWE)

CWE-416

Affected Products (8)

adobe · acrobatvulnerable

adobe · acrobat_dcvulnerable

adobe · acrobat_reader_dcvulnerable

adobe · readervulnerable

apple · mac_os_x

microsoft · windows

References (6)

http://www.securityfocus.com/bid/97550

Third Party AdvisoryVDB Entry