Published: 27/02/2018 Updated: 24/08/2020

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 10 | Impact Score: 6 | Exploitability Score: 3.9

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

An issue exists in Adobe Acrobat Reader 2018.009.20050 and previous versions versions, 2017.011.30070 and previous versions versions, 2015.006.30394 and previous versions versions. This vulnerability is a security bypass vulnerability that leads to a sandbox escape. Specifically, the vulnerability exists in the way a cross call is handled.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe acrobat dc
adobe acrobat
adobe acrobat reader
adobe acrobat reader dc

Roses are red, Windows error screens are blue. It's 2018, and an email can still pwn you

The Register • Shaun Nichols in San Francisco • 14 Feb 2018

Here's a bumper crop of security fixes you do not want to miss

Patch Tuesday Serious security flaws in Outlook and Edge are headlining a busy Microsoft Patch Tuesday. The Redmond giant has issued the February edition of its monthly security update, addressing a total of 50 CVE-listed vulnerabilities in its products. Adobe has also posted an update for flaws in Reader and Experience Manager. Headlining the Microsoft patch load is a fix for an Outlook bug, CVE-2018-0852, which is a memory corruption flaw that can be exploited to achieve remote code execution....

CVE-2018-4872

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect