← Voltar para CVEs

CVE-2011-2462

CRITICALCISA KEV

9.8

Descricao

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.

Detalhes CVE

Pontuacao CVSS v3.19.8

SeveridadeCRITICAL

Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vetor de ataqueNETWORK

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioNONE

Publicado12/7/2011

Ultima modificacao4/21/2026

Fontekev

Avistamentos honeypot0

CISA KEV

FornecedorAdobe

ProdutoReader and Acrobat

Nome da vulnerabilidadeAdobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability

Data inclusao KEV2022-06-08

Prazo de remediacao2022-06-22

Uso em ransomwareUnknown

Produtos afetados

adobe:acrobatadobe:acrobat_readerapple:mac_os_xmicrosoft:windowsopengroup:unix

Fraquezas (CWE)

CWE-787CWE-787

Referencias

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html(psirt@adobe.com)

http://www.adobe.com/support/security/advisories/apsa11-04.html(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb11-30.html(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb12-01.html(psirt@adobe.com)

http://www.redhat.com/support/errata/RHSA-2012-0011.html(psirt@adobe.com)

http://www.us-cert.gov/cas/techalerts/TA11-350A.html(psirt@adobe.com)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14562(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/advisories/apsa11-04.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/bulletins/apsb11-30.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/bulletins/apsb12-01.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2012-0011.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.us-cert.gov/cas/techalerts/TA11-350A.html(af854a3a-2127-422b-91ae-364da2661108)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14562(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/cisagov/vulnrichment/issues/199(134c704f-9b21-4f2e-91b3-4a467353bcc0)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-2462(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.