← Back to CVEs

CVE-2013-3346

CRITICALCISA KEV

9.8

Description

Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341.

CVE Details

CVSS v3.1 Score9.8

SeverityCRITICAL

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published8/30/2013

Last Modified11/21/2025

Sourcekev

Honeypot Sightings0

CISA KEV

VendorAdobe

ProductReader and Acrobat

Vulnerability NameAdobe Reader and Acrobat Memory Corruption Vulnerability

KEV Date Added2022-03-03

Remediation Due Date2022-03-24

Ransomware UseUnknown

Affected Products

adobe:acrobatadobe:acrobat_reader

Weaknesses (CWE)

CWE-787CWE-787

References

http://www.adobe.com/support/security/bulletins/apsb13-15.html(psirt@adobe.com)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19054(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb13-15.html(af854a3a-2127-422b-91ae-364da2661108)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19054(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/cisagov/vulnrichment/issues/199(134c704f-9b21-4f2e-91b3-4a467353bcc0)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3346(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.