First published: Tue Mar 05 2019(Updated: )
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have a security bypass vulnerability. Successful exploitation could lead to privilege escalation.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Acrobat Reader DC | >=15.006.30060<=15.006.30464 | |
Adobe Acrobat Reader DC | >=15.008.20082<=19.010.20069 | |
Adobe Acrobat Reader DC | >=17.011.30056<=17.011.30113 | |
Adobe Acrobat Reader | >=15.006.30060<=15.006.30464 | |
Adobe Acrobat Reader | >=15.008.20082<=19.010.20069 | |
Adobe Acrobat Reader | >=17.011.30059<=17.011.30113 | |
Apple iOS and macOS | ||
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-19725 is considered to have a high severity level due to its potential for privilege escalation.
To fix CVE-2018-19725, upgrade Adobe Acrobat and Reader to the latest versions that address this vulnerability.
Adobe Acrobat versions 2019.010.20069 and earlier, 2017.011.30113 and earlier, and 2015.006.30464 and earlier are affected by CVE-2018-19725.
If CVE-2018-19725 is exploited, it could lead to unauthorized privilege escalation on the affected system.
Yes, Adobe Acrobat Reader DC versions 2019.010.20069 and earlier, 2017.011.30113 and earlier, and 2015.006.30464 and earlier are vulnerable to CVE-2018-19725.