CVE-2018-16044

HIGH

Adobe Acrobat DC < 15.006.30457 - Privilege Escalation

Title source: rule

Description

Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019.008.20081 and earlier, 2017.011.30106 and earlier version, 2017.011.30105 and earlier version, 2015.006.30457 and earlier, and 2015.006.30456 and earlier have a security bypass vulnerability. Successful exploitation could lead to privilege escalation.

Exploits (1)

github 175 stars

by wjl110 · javascriptpoc

https://github.com/wjl110/CVE-Master/tree/main/CVE-2018-16044

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106165

[Patch, Vendor Advisory] https://helpx.adobe.com/security/products/acrobat/apsb18-41.html

Scores

CVSS v3 8.8

EPSS 0.0544

EPSS Percentile 90.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published

Products (4)

adobe/acrobat_dc 15.006.30060 - 15.006.30457

adobe/acrobat_dc 15.008.20082 - 19.008.20081

adobe/acrobat_reader_dc 15.006.30060 - 15.006.30457

adobe/acrobat_reader_dc 15.008.20082 - 19.008.20081

Published Jan 18, 2019

Tracked Since Feb 18, 2026