CVE-2018-15968

MEDIUM

Adobe Acrobat DC < 15.006.30452 - Out-of-Bounds Read

Title source: rule

Description

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

Exploits (1)

nomisec WRITEUP

by sandi-go · poc

https://github.com/sandi-go/cve-2018-15968

View Code ZIP pw:eip

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1041809

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/105439

Vendor Advisory x_refsource_confirm

https://helpx.adobe.com/security/products/acrobat/apsb18-30.html

Scores

CVSS v3 5.5

EPSS 0.0252

EPSS Percentile 85.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE

CWE-125

Status published

Products (4)

adobe/acrobat_dc 15.006.30060 - 15.006.30452

adobe/acrobat_dc 15.008.20082 - 18.011.20063

adobe/acrobat_reader_dc 15.006.30060 - 15.006.30452

adobe/acrobat_reader_dc 15.008.20082 - 18.011.20063

Published Oct 12, 2018

Tracked Since Feb 18, 2026