Out-of-bounds write vulnerability in Adobe Acrobat and Reader
CVE-2018-5021
9.8CRITICAL
Key Information:
- Vendor
- Adobe
- Vendor
- CVE Published:
- 20 July 2018
Summary
Adobe Acrobat and Reader versions 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier are affected by an out-of-bounds write vulnerability. This flaw allows attackers to exploit the software, potentially leading to arbitrary code execution within the context of the current user. Users are urged to apply patches provided by Adobe to mitigate risks associated with this vulnerability.
Affected Version(s)
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved