What is the severity of CVE-2018-4982?

The severity of CVE-2018-4982 is high with a CVSS score of 8.8.

How can remote attackers exploit CVE-2018-4982?

Remote attackers can exploit CVE-2018-4982 by tricking a target into visiting a malicious page or opening a malicious file.

Which software versions are affected by CVE-2018-4982?

Adobe Acrobat Pro DC versions 15.006.30060 to 15.006.30417, 17.011.30059 to 17.011.30079, and 18.011.20038, as well as Adobe Acrobat Reader DC versions 15.006.30060 to 15.006.30417, 17.011.30059 to 17.011.30079, and 18.011.20038, are affected by CVE-2018-4982.

How can I fix CVE-2018-4982?

To fix CVE-2018-4982, it is recommended to update to the latest version of Adobe Acrobat Pro DC or Adobe Acrobat Reader DC.

Where can I find more information about CVE-2018-4982?

You can find more information about CVE-2018-4982 at the following references: [1] [2] [3]

Vulnerability/
CVE-2018-4982

high

8.8

CWE

787

9/7/2018

21/10/2023

5/8/2024

CVE-2018-4982: Adobe Acrobat Pro DC ImageConversion EMF BMP Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

First published: Mon Jul 09 2018(Updated: )

Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have a Heap Overflow vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Pro DC
Adobe Acrobat Dc	>=15.006.30060<=15.006.30417
Adobe Acrobat Dc	>=15.008.20082<=18.011.20038
Adobe Acrobat Dc	>=17.011.30059<=17.011.30079
Adobe Acrobat Reader DC	>=15.006.30060<=15.006.30417
Adobe Acrobat Reader DC	>=15.008.20082<=18.011.20038
Adobe Acrobat Reader DC	>=17.011.30059<=17.011.30079
Apple Mac OS X
Microsoft Windows

Remedy

https://helpx.adobe.com/security/products/acrobat/apsb18-09.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-4982?
The severity of CVE-2018-4982 is high with a CVSS score of 8.8.
How can remote attackers exploit CVE-2018-4982?
Remote attackers can exploit CVE-2018-4982 by tricking a target into visiting a malicious page or opening a malicious file.
Which software versions are affected by CVE-2018-4982?
Adobe Acrobat Pro DC versions 15.006.30060 to 15.006.30417, 17.011.30059 to 17.011.30079, and 18.011.20038, as well as Adobe Acrobat Reader DC versions 15.006.30060 to 15.006.30417, 17.011.30059 to 17.011.30079, and 18.011.20038, are affected by CVE-2018-4982.
How can I fix CVE-2018-4982?
To fix CVE-2018-4982, it is recommended to update to the latest version of Adobe Acrobat Pro DC or Adobe Acrobat Reader DC.
Where can I find more information about CVE-2018-4982?
You can find more information about CVE-2018-4982 at the following references: [1] [2] [3]

collector/zdi-advisory
alias/ZDI-18-466
alias/ZDI-CAN-5783
alias/CVE-2018-4982
collector/nvd-index
agent/references
agent/severity
agent/title
agent/author
agent/tags
agent/weakness
agent/type
agent/event
agent/description
agent/remedy
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
vendor/adobe
canonical/adobe acrobat pro dc
canonical/adobe acrobat dc
version/adobe acrobat dc/15.006.30060
version/adobe acrobat dc/15.006.30417
version/adobe acrobat dc/15.008.20082
version/adobe acrobat dc/18.011.20038
version/adobe acrobat dc/17.011.30059
version/adobe acrobat dc/17.011.30079
canonical/adobe acrobat reader dc
version/adobe acrobat reader dc/15.006.30060
version/adobe acrobat reader dc/15.006.30417
version/adobe acrobat reader dc/15.008.20082
version/adobe acrobat reader dc/18.011.20038
version/adobe acrobat reader dc/17.011.30059
version/adobe acrobat reader dc/17.011.30079
vendor/apple
canonical/apple mac os x
vendor/microsoft
canonical/microsoft windows