Vulnerability Database

317,107

Total vulnerabilities in the database

CVE-2017-2962

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable type confusion vulnerability in the XSLT engine related to localization functionality. Successful exploitation could lead to arbitrary code execution.

Published: Jan 11, 2017
Updated: Nov 9, 2025
CVE: CVE-2017-2962
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-704

Affected Software
References

Software	From	Fixed in
adobe / acrobat	-	11.0.18.x
adobe / acrobat_dc	-	15.006.30244.x
adobe / acrobat_dc	-	15.020.20042.x
adobe / acrobat_reader_dc	-	15.006.30244.x
adobe / acrobat_reader_dc	-	15.020.20042.x
adobe / reader	-	11.0.18.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo