CVE-2017-3113

CVE Database · CVE-2017-3113

CVE-2017-3113

· N/AModified

CVSS v3.1

N/A

EPSS

9.36%

Published

Aug 11, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in JavaScript engine when creating large strings. Successful exploitation could lead to arbitrary code execution.

Weaknesses (CWE)

CWE-416

Affected Products (10)

adobe · acrobat (up to 11.0.21)vulnerable

adobe · acrobat_dc (up to 15.006.30355)vulnerable

adobe · acrobat_dcvulnerable

adobe · acrobat_dc (up to 17.012.20098)vulnerable

adobe · acrobat_reader_dc (up to 15.006.30355)vulnerable

adobe · acrobat_reader_dc (up to 17.011.30066)vulnerable

adobe · acrobat_reader_dc (up to 17.012.20098)vulnerable

adobe · reader (up to 11.0.21)vulnerable

apple · mac_os_x