CVE-2018-5019
published 2018-07-20CVE-2018-5019: Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read…
PriorityP272medium6.5CVSS 3.0
AVNACLPRNUIRSUCHINAN
ITWVulnCheck KEV
Exploited in the wild
EPSS
8.43%
94.3th percentile
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat_dc | 15.006.30060 – 15.006.30418 | — |
| adobe | acrobat_dc | 15.008.20082 – 18.011.20040 | — |
| adobe | acrobat_dc | 17.011.30059 – 17.011.30080 | — |
| adobe | acrobat_reader_dc | 15.006.30060 – 15.006.30418 | — |
| adobe | acrobat_reader_dc | 15.008.20082 – 18.011.20040 | — |
| adobe | acrobat_reader_dc | 17.011.30059 – 17.011.30080 | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
vulncheck6.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cxfm-w6cc-m969: Adobe Acrobat and Reader 2018
ghsa_unreviewed·2022-05-14
CVE-2018-5019 [MEDIUM] CWE-125 GHSA-cxfm-w6cc-m969: Adobe Acrobat and Reader 2018
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
VulnCheck
Adobe acrobat_dc Out-of-bounds Read
vulncheck·2018·CVSS 6.5
CVE-2018-5019 [MEDIUM] Adobe acrobat_dc Out-of-bounds Read
Adobe acrobat_dc Out-of-bounds Read
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Affected: Adobe acrobat_dc
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.fortinet.com/content/dam/fortinet/assets/threat-reports/threat-landscape-report-2h-2023.pdf
No detection rules found.
No writeups or analysis indexed.
2018-07-20
Published
Exploited in the wild