CVE-2019-8043

HIGH

Adobe Acrobat and Reader DC < 19.012.20036 - Out-of-bounds Read

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-8043. PoCs published by Google Security Research.

AI-analyzed exploit summary The exploit demonstrates an information disclosure vulnerability in Adobe Acrobat Reader DC (2019.012.20035) via a malformed PDF file. The crash occurs due to an out-of-bounds read in the memcpy() function, triggered by a single-byte modification in a JP2K image stream.

Description

Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .

Exploits (1)

exploitdb WORKING POC VERIFIED
by Google Security Research · textdoswindows
https://www.exploit-db.com/exploits/47270

The exploit demonstrates an information disclosure vulnerability in Adobe Acrobat Reader DC (2019.012.20035) via a malformed PDF file. The crash occurs due to an out-of-bounds read in the memcpy() function, triggered by a single-byte modification in a JP2K image stream.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Adobe Acrobat Reader DC (2019.012.20035)
No auth needed
Prerequisites: Adobe Acrobat Reader DC (2019.012.20035) installed on Windows 10 · Application Verifier with PageHeap enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://helpx.adobe.com/security/products/acrobat/apsb19-41.html

Scores

CVSS v3 7.5
EPSS 0.1340
EPSS Percentile 95.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-125
Status published
Products (4)
adobe/acrobat_dc 15.006.30060 - 15.006.30499
adobe/acrobat_dc 15.008.20082 - 19.012.20036
adobe/acrobat_reader_dc 15.006.30060 - 15.006.30499
adobe/acrobat_reader_dc 15.008.20082 - 19.012.20036
Published Aug 20, 2019
Tracked Since Feb 18, 2026