CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jun 22, 2022

CVE-2011-2462

High

EPSS 91.9%CISA KEV

Adobe/Reader and Acrobat

Description

The Universal 3D (U3D) component in Adobe Reader and Acrobat contains a memory corruption vulnerability which could allow remote attackers to execute code or cause denial-of-service (DoS).

EPSS — Exploit Probability

91.9%

Higher than 99.7% of all CVEs

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2011-2462

Risk Assessment

HIGH

In CISA KEV

High EPSS

Details

Severity: High
EPSS: 91.9%
CISA KEV: Yes
Ransomware: Unknown
Articles: 0

Timeline

Published

Jun 8, 2022

Added to KEV

Jun 8, 2022

Remediation Due

Jun 22, 2022

Affected Product

Adobe

Reader and Acrobat

View all Adobe CVEs

External Links

NVD (NIST)CVE Details MITRE CVE