Skip to main content
CVE-2018-4991 CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Adobe Creative Cloud
NVD
CVSS 3.0
9.8
EPSS
5.8%
CVE-2018-4944 CRITICAL Act Now

Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Flash Player Enterprise Linux Desktop Enterprise Linux Server +1
NVD
CVSS 3.0
9.8
EPSS
9.0%
CVE-2018-4939 CRITICAL KEV THREAT Act Now

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Deserialization of Untrusted Data vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Deserialization RCE Coldfusion
NVD
CVSS 3.1
9.8
EPSS
63.3%
CVE-2018-4924 CRITICAL Act Now

Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Command Injection Dreamweaver
NVD
CVSS 3.0
9.8
EPSS
14.5%
CVE-2018-4918 CRITICAL Act Now

Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier have an exploitable out-of-bounds write vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe RCE Buffer Overflow Acrobat +3
NVD
CVSS 3.1
9.8
EPSS
12.2%
CVE-2018-4917 CRITICAL Act Now

Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier have an exploitable heap overflow vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe RCE Buffer Overflow Acrobat 2017 +3
NVD
CVSS 3.1
9.8
EPSS
17.8%
CVE-2018-4923 CRITICAL Act Now

Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Command Injection Connect
NVD
CVSS 3.0
9.1
EPSS
9.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy