First published: Mon Jul 09 2018(Updated: )
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Acrobat Reader DC | >=15.006.30417<15.006.30418 | |
Adobe Acrobat Reader DC | >=17.011.30079<17.011.30080 | |
Adobe Acrobat Reader DC | >=18.011.20038<18.011.20040 | |
Adobe Acrobat Reader | >=15.006.30417<15.006.30418 | |
Adobe Acrobat Reader | >=17.011.30079<17.011.30080 | |
Adobe Acrobat Reader | >=18.011.20038<18.011.20040 | |
Apple iOS and macOS | ||
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-4949 has a medium severity rating due to its potential for information disclosure.
To fix CVE-2018-4949, users should update Adobe Acrobat and Reader to the latest versions available.
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier are affected by CVE-2018-4949.
CVE-2018-4949 is classified as an out-of-bounds read vulnerability.
Yes, successful exploitation of CVE-2018-4949 could lead to information disclosure.