CVE-2018-4979
published 2018-07-09CVE-2018-4979: Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have a Security Bypass vulnerability…
PriorityP335medium6.5CVSS 3.0
AVNACLPRNUIRSUCHINAN
EPSS
10.55%
95.2th percentile
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have a Security Bypass vulnerability. Successful exploitation could lead to information disclosure.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat_dc | 15.006.30060 – 15.006.30417 | — |
| adobe | acrobat_dc | 15.008.20082 – 18.011.20038 | — |
| adobe | acrobat_dc | 17.011.30059 – 17.011.30079 | — |
| adobe | acrobat_reader_dc | 15.006.30060 – 15.006.30417 | — |
| adobe | acrobat_reader_dc | 15.008.20082 – 18.011.20038 | — |
| adobe | acrobat_reader_dc | 17.011.30059 – 17.011.30079 | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/104168http://www.securitytracker.com/id/1040920https://helpx.adobe.com/security/products/acrobat/apsb18-09.htmlhttps://www.zerodayinitiative.com/advisories/ZDI-18-463/http://www.securityfocus.com/bid/104168http://www.securitytracker.com/id/1040920https://helpx.adobe.com/security/products/acrobat/apsb18-09.html
2018-07-09
Published