CVE-2018-5030

HIGH

Adobe Acrobat and Reader DC < 15.006.30418, 15.008.20082-18.011.20040 - RCE via Untrusted Pointer Dereference

Title source: llm
STIX 2.1

Description

Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1041250
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/104701

Scores

CVSS v3 8.8
EPSS 0.0914
EPSS Percentile 94.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-476
Status published
Products (4)
adobe/acrobat_dc 15.006.30060 - 15.006.30418
adobe/acrobat_dc 15.008.20082 - 18.011.20040
adobe/acrobat_reader_dc 15.006.30060 - 15.006.30418
adobe/acrobat_reader_dc 15.008.20082 - 18.011.20040
Published Jul 20, 2018
Tracked Since Feb 18, 2026