Heap Overflow Vulnerability in Adobe Acrobat and Reader
CVE-2018-4978

9.8CRITICAL

Summary

Adobe Acrobat and Reader are impacted by a heap overflow vulnerability that could lead to the execution of arbitrary code with the privileges of the current user. The flaw exists in multiple versions of Adobe Acrobat and Reader prior to the specified version numbers, posing significant risks to users who may open malicious PDF files. This could result in unauthorized access and control over the affected systems, highlighting the need for immediate updates and security measures.

Affected Version(s)

Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier versions

References

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.