CVE-2019-7829

HIGH

Adobe Acrobat and Reader <2019.010.20100 - RCE

Title source: llm
STIX 2.1

Description

Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
https://helpx.adobe.com/security/products/acrobat/apsb19-18.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/108322
Third Party Advisory, VDB Entry x_refsource_misc
https://www.zerodayinitiative.com/advisories/ZDI-19-511/

Scores

CVSS v3 8.8
EPSS 0.0946
EPSS Percentile 94.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (4)
adobe/acrobat_dc 15.006.30060 - 15.006.30495
adobe/acrobat_dc 15.008.20082 - 19.010.20100
adobe/acrobat_reader_dc 15.006.30060 - 15.006.30493
adobe/acrobat_reader_dc 15.008.20082 - 19.010.20099
Published May 22, 2019
Tracked Since Feb 18, 2026