Kaspersky ID:
KLA11390
Detect Date:
12/11/2018
Updated:
07/07/2026

Description

Multiple serious vulnerabilities were found in  Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges and obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Multiple buffer errors vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  2. Multiple untrusted pointer dereference vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  3. Multiple security bypass vulnerabilities in Adobe Acrobat and Reader can be exploited to gain privileges;
  4. Multiple use-after-free vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  5. Multiple out-of-bounds write vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  6. Multiple heap overflow vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  7. Multiple out-of-bounds read vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;
  8. Multiple integer Overflow vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;
  9. Multiple security bypass vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;

Original advisories

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

CVE list

  • CVE-2018-15998
    critical
  • CVE-2018-15987
    critical
  • CVE-2018-16004
    critical
  • CVE-2018-19720
    critical
  • CVE-2018-16045
    critical
  • CVE-2018-16044
    critical
  • CVE-2018-16018
    critical
  • CVE-2018-19715
    critical
  • CVE-2018-19713
    critical
  • CVE-2018-19708
    critical
  • CVE-2018-19707
    critical
  • CVE-2018-19700
    critical
  • CVE-2018-19698
    critical
  • CVE-2018-16046
    critical
  • CVE-2018-16040
    critical
  • CVE-2018-16039
    critical
  • CVE-2018-16037
    critical
  • CVE-2018-16036
    critical
  • CVE-2018-16029
    critical
  • CVE-2018-16027
    critical
  • CVE-2018-16026
    critical
  • CVE-2018-16025
    critical
  • CVE-2018-16014
    critical
  • CVE-2018-16008
    critical
  • CVE-2018-16003
    critical
  • CVE-2018-15994
    critical
  • CVE-2018-15993
    critical
  • CVE-2018-15992
    critical
  • CVE-2018-15991
    critical
  • CVE-2018-15990
    critical
  • CVE-2018-19702
    critical
  • CVE-2018-16016
    critical
  • CVE-2018-16000
    critical
  • CVE-2018-15999
    critical
  • CVE-2018-15988
    critical
  • CVE-2018-19716
    critical
  • CVE-2018-16021
    critical
  • CVE-2018-12830
    critical
  • CVE-2018-19717
    high
  • CVE-2018-19714
    high
  • CVE-2018-19712
    high
  • CVE-2018-19711
    high
  • CVE-2018-19710
    high
  • CVE-2018-19709
    high
  • CVE-2018-19706
    critical
  • CVE-2018-19705
    high
  • CVE-2018-19704
    high
  • CVE-2018-19703
    high
  • CVE-2018-19701
    critical
  • CVE-2018-19699
    critical
  • CVE-2018-16047
    critical
  • CVE-2018-16043
    high
  • CVE-2018-16041
    critical
  • CVE-2018-16038
    critical
  • CVE-2018-16035
    critical
  • CVE-2018-16034
    high
  • CVE-2018-16033
    high
  • CVE-2018-16032
    high
  • CVE-2018-16031
    critical
  • CVE-2018-16030
    high
  • CVE-2018-16028
    high
  • CVE-2018-16024
    high
  • CVE-2018-16023
    high
  • CVE-2018-16022
    high
  • CVE-2018-16020
    high
  • CVE-2018-16019
    high
  • CVE-2018-16017
    high
  • CVE-2018-16015
    high
  • CVE-2018-16013
    high
  • CVE-2018-16012
    high
  • CVE-2018-16010
    high
  • CVE-2018-16006
    high
  • CVE-2018-16005
    high
  • CVE-2018-16002
    high
  • CVE-2018-16001
    high
  • CVE-2018-15997
    high
  • CVE-2018-15996
    high
  • CVE-2018-15989
    high
  • CVE-2018-15985
    high
  • CVE-2018-15984
    high
  • CVE-2018-19719
    high
  • CVE-2018-16009
    high
  • CVE-2018-16007
    high
  • CVE-2018-15995
    high
  • CVE-2018-15986
    high
  • CVE-2018-16042
    high
  • CVE-2018-19728
    high

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Do you want to save your changes?
Your message has been sent successfully.