APSB18-02 Security Updates available for Adobe Acrobat and Reader

2018-02-0800:00:00

helpx.adobe.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.681

Percentile

98.0%

JSON

Adobe has released security updates for Adobe Acrobat and Reader for Windows and Macintosh. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

Affected configurations

Vulners

Node

adobeacrobat_dcRange≤18.009.20050continuous

adobeacrobat_reader_dcRange≤18.009.20050continuous

adobeacrobat_2017Range≤17.011.30070

adobeacrobat_reader_2017Range≤17.011.30070

adobeacrobat_dcRange≤15.006.30394classic

adobeacrobat_reader_dcRange≤15.006.30394classic

VendorProductVersionCPE
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
adobeacrobat_2017*cpe:2.3:a:adobe:acrobat_2017:*:*:*:*:*:*:*:*
adobeacrobat_reader_2017*cpe:2.3:a:adobe:acrobat_reader_2017:*:*:*:*:*:*:*:*
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*

Vendor	Product	Version	CPE
adobe	acrobat_dc	*	cpe:2.3:a:adobe:acrobat_dc:::::continuous:::*
adobe	acrobat_reader_dc	*	cpe:2.3:a:adobe:acrobat_reader_dc:::::continuous:::*
adobe	acrobat_2017	*	cpe:2.3:a:adobe:acrobat_2017::::::::
adobe	acrobat_reader_2017	*	cpe:2.3:a:adobe:acrobat_reader_2017::::::::
adobe	acrobat_dc	*	cpe:2.3:a:adobe:acrobat_dc:::::classic:::*
adobe	acrobat_reader_dc	*	cpe:2.3:a:adobe:acrobat_reader_dc:::::classic:::*