Is CVE-2018-4993 known to be exploited?

40 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Adobe Acrobat And Reader 2018.011.20038 Earlier, 2017.011.30079 2015.006.30417 Earlier Versions

CVE-2018-4993

Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an NTLM SSO hash theft vulnerability. Successful exploitation could lead to information disclosure.

EPSS: 0.683 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a Adobe Acrobat And Reader 2018.011.20038 Earlier, 2017.011.30079 2015.006.30417 Earlier Versions — versions Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier versions

Public proof-of-concept exploits

References

helpx.adobe.com/security/products/acrobat/apsb18-09.html (x_refsource_MISC)
1040920 (vdb-entry, x_refsource_SECTRACK)
104177 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2018-4993?: CVE-2018-4993 is a vulnerability in Adobe Acrobat And Reader 2018.011.20038 Earlier, 2017.011.30079 2015.006.30417 Earlier Versions. Published 2018-07-09.
Is CVE-2018-4993 known to be exploited?: 40 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.