Out-of-Bounds Read Vulnerability in Adobe Acrobat and Reader
CVE-2018-15989

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: Acrobat Dc; Acrobat Reader Dc
Vendor: CVE Published:; 18 January 2019

What is CVE-2018-15989?

Adobe Acrobat and Reader exhibit an out-of-bounds read vulnerability that could be exploited to disclose sensitive information. The issue affects multiple versions of the software, including those released before 2019 and 2017. Malicious actors could potentially leverage this flaw to access unauthorized data, emphasizing the need for users to update to the latest versions to mitigate risks.

References

http://www.securityfocus.com/bid/106162

vdb-entryx_refsource_BID

https://helpx.adobe.com/security/products/acrobat/apsb18-...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2019
Vulnerability Reserved
Aug 28, 2018