← Zuruck zu CVEs

CVE-2011-2462

CRITICALCISA KEV

9.8

Beschreibung

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.

CVE Details

CVSS v3.1 Bewertung9.8

SchweregradCRITICAL

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionNONE

Veroffentlicht12/7/2011

Zuletzt geandert4/21/2026

Quellekev

Honeypot-Sichtungen0

CISA KEV

HerstellerAdobe

ProduktReader and Acrobat

SchwachstellennameAdobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability

KEV Aufnahmedatum2022-06-08

Behebungsfrist2022-06-22

Ransomware-NutzungUnknown

Betroffene Produkte

adobe:acrobatadobe:acrobat_readerapple:mac_os_xmicrosoft:windowsopengroup:unix

Schwachen (CWE)

CWE-787CWE-787

Referenzen

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html(psirt@adobe.com)

http://www.adobe.com/support/security/advisories/apsa11-04.html(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb11-30.html(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb12-01.html(psirt@adobe.com)

http://www.redhat.com/support/errata/RHSA-2012-0011.html(psirt@adobe.com)

http://www.us-cert.gov/cas/techalerts/TA11-350A.html(psirt@adobe.com)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14562(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/advisories/apsa11-04.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/bulletins/apsb11-30.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/bulletins/apsb12-01.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2012-0011.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.us-cert.gov/cas/techalerts/TA11-350A.html(af854a3a-2127-422b-91ae-364da2661108)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14562(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/cisagov/vulnrichment/issues/199(134c704f-9b21-4f2e-91b3-4a467353bcc0)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-2462(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.