CVE-2018-4999
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
09/07/2018
Last modified:
29/08/2018
Description
Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, and 2015.006.30394 and earlier have an Out-of-bounds read vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* | 17.011.30059 (including) | 17.011.30070 (including) |
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:* | 15.006.30060 (including) | 15.006.30394 (including) |
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:* | 15.008.20082 (including) | 18.009.20050 (including) |
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* | 17.011.30059 (including) | 17.011.30070 (including) |
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:* | 15.006.30060 (including) | 15.006.30394 (including) |
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:* | 15.008.20082 (including) | 18.009.20050 (including) |
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page