BDU:2022-06996

BDU

Medium

Уязвимость файла ImageConversion.api программ просмотра и редактирования PDF-файлов Adobe Acrobat Document Cloud, Adobe Acrobat Reader Docu…

CVSS

5.5

Medium

EPSS

0.00

Published

2022-01-01

Updated

2022-01-01

Description

Уязвимость файла ImageConversion.api программ просмотра и редактирования PDF-файлов Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader Document Cloud 2017 связана с чтением данных за границами буфера в памяти. Эксплуатация уязвимости может позволить нарушителю раскрыть защищаемую информацию

Affected products

Adobe systems inc. Adobe acrobat 2017Adobe systems inc. Adobe acrobat 2017Adobe systems inc. Adobe acrobat document cloudAdobe systems inc. Adobe acrobat document cloudAdobe systems inc. Adobe acrobat document cloudAdobe systems inc. Adobe acrobat document cloudAdobe systems inc. Adobe acrobat reader document cloudAdobe systems inc. Adobe acrobat reader document cloudAdobe systems inc. Adobe acrobat reader document cloudAdobe systems inc. Adobe acrobat reader document cloudAdobe systems inc. Adobe acrobat reader document cloud 2017Adobe systems inc. Adobe acrobat reader document cloud 2017

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Timeline

2022-01-01

Published

2022-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: L

Local (L)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: R

Required (R)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: N

None (N)

Availability Impact

A: N

None (N)

Exploit indicators

EPSS

0.000 · p0

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Adobe

Adobe Acrobat Document Cloud Adobe Acrobat Reader Document Cloud Adobe Acrobat 2017 Adobe Acrobat Reader Document Cloud 2017

Product	Vendor	Status
adobe acrobat 2017	adobe systems inc.	Tracked
adobe acrobat 2017	adobe systems inc.	Tracked
adobe acrobat document cloud	adobe systems inc.	Tracked
adobe acrobat document cloud	adobe systems inc.	Tracked
adobe acrobat document cloud	adobe systems inc.	Tracked
adobe acrobat document cloud	adobe systems inc.	Tracked
adobe acrobat reader document cloud	adobe systems inc.	Tracked
adobe acrobat reader document cloud	adobe systems inc.	Tracked
adobe acrobat reader document cloud	adobe systems inc.	Tracked
adobe acrobat reader document cloud	adobe systems inc.	Tracked
adobe acrobat reader document cloud 2017	adobe systems inc.	Tracked
adobe acrobat reader document cloud 2017	adobe systems inc.	Tracked

Source databases

BDU

Related vulnerabilities

CVE-2018-15927

External references

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-15927@https://helpx.adobe.com/security/products/acrobat/apsb18-30.html@https://helpx.adobe.com/security/products/acrobat/apsb18-30.html@https://bugtraq.securityfocus.com/archive@http://www.securitytracker.com/id/1041809@https://research.checkpoint.com/2018/50-adobe-cves-in-50-days/@https://cpr-zero.checkpoint.com/vulns/cprid-2082/