CVE-2018-15929

Name: CVE-2018-15929
Creator: NVD / NIST
Published: 2018-10-12T18:29:15.667+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 13.46%

Last modified Jun 17, 2026

CVE-2018-15929 is a vulnerability of currently unknown severity. Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.. EPSS estimates a 13.46% chance of exploitation in the next 30 days.

Description

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.

Metrics

EPSS Probability

13.46%

96.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-787

Affected Software

Vendor	Product	Versions
Adobe	Acrobat Dc	>= 15.006.30060, <= 15.006.30452
Adobe	Acrobat Dc	>= 15.008.20082, <= 18.011.20063
Adobe	Acrobat Dc	>= 17.011.30059, <= 17.011.30102
Adobe	Acrobat Reader Dc	>= 15.006.30060, <= 15.006.30452
Adobe	Acrobat Reader Dc	>= 15.008.20082, <= 18.011.20063
Adobe	Acrobat Reader Dc	>= 17.011.30059, <= 17.011.30102

References

http://www.securityfocus.com/bid/105432Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1041809Third Party Advisory, VDB Entry
https://helpx.adobe.com/security/products/acrobat/apsb18-30.htmlPatch, Vendor Advisory
https://research.checkpoint.com/2018/50-adobe-cves-in-50-days/
http://www.securityfocus.com/bid/105432Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1041809Third Party Advisory, VDB Entry
https://helpx.adobe.com/security/products/acrobat/apsb18-30.htmlPatch, Vendor Advisory
https://research.checkpoint.com/2018/50-adobe-cves-in-50-days/

Timeline

Published: Oct 12, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2018-15929?

How severe is CVE-2018-15929?

Severity scoring for CVE-2018-15929 is pending analysis. The EPSS model estimates a 13.46% probability of exploitation in the next 30 days.

How do I fix CVE-2018-15929?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-15929?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST