CVE-2011-2462 — Adobe Reader and Acrobat

Adobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability

Added to KEV

2022-06-08

Federal due date

2022-06-22

Vendor

Adobe

Product

Reader and Acrobat

EPSS

99.7th percentile (score 0.916, as of 2026-06-08)

NVD CVSS v3.1

—

Ransomware use

Unknown

Upstream

https://nvd.nist.gov/vuln/detail/CVE-2011-2462

CISA short description

The Universal 3D (U3D) component in Adobe Reader and Acrobat contains a memory corruption vulnerability which could allow remote attackers to execute code or cause denial-of-service (DoS).

Required action

Apply updates per vendor instructions.

EPSS percentile is the FIRST.org exploit-probability ranking as of the date noted above; it moves daily. CVSS reflects NVD's analysis at time of publication.