CVE-2017-16386
- Source
- https://cve.org/CVERecord?id=CVE-2017-16386
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16386.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-16386
- Published
- 2017-12-09T06:29:01.850Z
- Modified
- 2026-03-14T14:27:03.637186Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the target buffer; the computation is part of the XPS2PDF conversion engine. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.
- References
Affected packages
Git /
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16386.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "11.0.22"
}
]
},
{
"events": [
{
"introduced": "17.0"
},
{
"last_affected": "17.011.30066"
}
]
},
{
"events": [
{
"introduced": "-"
},
{
"last_affected": "17.012.20098"
}
]
},
{
"events": [
{
"introduced": "15.0"
},
{
"last_affected": "15.006.30355"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "11.0.22"
}
]
},
{
"events": [
{
"introduced": "17.0"
},
{
"last_affected": "17.011.30066"
}
]
},
{
"events": [
{
"introduced": "-"
},
{
"last_affected": "17.012.20098"
}
]
},
{
"events": [
{
"introduced": "15.0"
},
{
"last_affected": "15.006.30355"
}
]
}
]