Out-of-Bounds Write Vulnerability in Adobe Acrobat and Reader Products
CVE-2018-5020
8.8HIGH
Key Information:
- Vendor
- Adobe
- Vendor
- CVE Published:
- 20 July 2018
Summary
Adobe Acrobat and Reader versions 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier contain an out-of-bounds write vulnerability. This flaw allows an attacker to exploit the software, potentially leading to arbitrary code execution with the privileges of the current user. Users are encouraged to update their applications to the latest versions to mitigate any associated security risks.
Affected Version(s)
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved