Description
Adobe Bridge CC version 9.0.2 and earlier versions have an out of bound read vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://helpx.adobe.com/security/products/bridge/apsb19-37.html
Scores
CVSS v3
6.5
EPSS
0.0191
EPSS Percentile
83.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Details
CWE
CWE-125
Status
published
Products (1)
adobe/bridge_cc
< 9.0.2
Published
Jul 18, 2019
Tracked Since
Feb 18, 2026