CVE-2018-19725
published 2019-03-05CVE-2018-19725: Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have a security bypass…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have a security bypass vulnerability. Successful exploitation could lead to privilege escalation.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat_dc | 15.006.30060 – 15.006.30464 | — |
| adobe | acrobat_dc | 15.008.20082 – 19.010.20069 | — |
| adobe | acrobat_dc | 17.011.30056 – 17.011.30113 | — |
| adobe | acrobat_reader_dc | 15.006.30060 – 15.006.30464 | — |
| adobe | acrobat_reader_dc | 15.008.20082 – 19.010.20069 | — |
| adobe | acrobat_reader_dc | 17.011.30059 – 17.011.30113 | — |
| adobe | adobe_acrobat_and_reader | — | — |
| adobe | adobe_acrobat_and_reader | — | — |
| adobe | adobe_acrobat_and_reader | — | — |
No detection rules found.
No public exploits indexed.
Tenable
Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
blogs_tenable·2019-01-04·CVSS 8.8
CVE-2018-16011 [HIGH] Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
Blog / Cyber Exposure Alerts
Subscribe
# Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
Satnam Narang
January 4, 2019
2 Min Read
Adobe issued an out-of-band security bulletin which addresses two critical vulnerabilities (CVE-2018-16011, CVE-2018-16018) in Adobe Acrobat and Reader.
## Background
On January 3, Adobe released a security bulletin to address two critical vulnerabilities in Adobe Acrobat and Reader for both Windows and macOS. Adobe published a prenotification for this bulletin on December 27 to give users advance warning.
## Vulnerability details
The security bulletin addresses two critical vulnerabilities. The first, CVE-2018-16011, is a use after free vulnerability that could lead to arbitrary code execution. CVE-2018-16018 is a
Tenable
Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
blogs_tenable·2019-01-04
Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Zscaler
Zscaler protects against 43 new vulnerabilities for Acrobat Reader | Zscaler
blogs_zscaler
Zscaler protects against 43 new vulnerabilities for Acrobat Reader | Zscaler
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
2019-03-05
Published