Adobe Products Multiple Vulnerabilities

Last Update Date: 15 May 2018 09:57 Release Date: 15 May 2018 4010 Views

RISK: Medium Risk

TYPE: Clients - Productivity Products

Multiple vulnerabilities have been identified in Adobe Photoshop, Acrobat and Acrobat Reader, a remote attacker can exploit these vulnerabilities to trigger remote code execution, security restriction bypass and sensitive information disclosure on the targeted system.

Impact

Remote Code Execution
Security Restriction Bypass
Information Disclosure

System / Technologies affected

Product	Affected Version
Photoshop CC 2018	19.1.3 and earlier versions
Photoshop CC 2017	18.1.3 and earlier versions
Acrobat DC	2018.011.20038 and earlier versions 2015.006.30417 and earlier versions
Acrobat Reader DC	2018.011.20038 and earlier versions 2015.006.30417 and earlier versions
Acrobat 2017	2017.011.30079 and earlier versions
Acrobat Reader 2017	2017.011.30079 and earlier versions

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued a fix:
https://helpx.adobe.com/security/products/acrobat/apsb18-09.html
https://helpx.adobe.com/security/products/photoshop/apsb18-17.html

Vulnerability Identifier

CVE-2018-4946
CVE-2018-4947
CVE-2018-4948
CVE-2018-4949
CVE-2018-4950
CVE-2018-4951
CVE-2018-4952
CVE-2018-4953
CVE-2018-4954
CVE-2018-4955
CVE-2018-4956
CVE-2018-4957
CVE-2018-4958
CVE-2018-4959
CVE-2018-4960
CVE-2018-4961
CVE-2018-4962
CVE-2018-4963
CVE-2018-4964
CVE-2018-4965
CVE-2018-4966
CVE-2018-4967
CVE-2018-4968
CVE-2018-4969
CVE-2018-4970
CVE-2018-4971
CVE-2018-4972
CVE-2018-4973
CVE-2018-4974
CVE-2018-4975
CVE-2018-4976
CVE-2018-4977
CVE-2018-4978
CVE-2018-4979
CVE-2018-4980
CVE-2018-4981
CVE-2018-4982
CVE-2018-4983
CVE-2018-4984
CVE-2018-4985
CVE-2018-4986
CVE-2018-4987
CVE-2018-4988
CVE-2018-4989
CVE-2018-4990
CVE-2018-4993
CVE-2018-4994

Source

Adobe