PT-2019-4375 · Adobe · Acrobat+1
Publicado
2019-08-13
·
Atualizado
2021-11-22
·
CVE-2019-8237
CVSS v3.1
10
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat and Reader versions 2019.012.20035 and earlier
Adobe Acrobat and Reader versions 2017.011.30142 and earlier
Adobe Acrobat and Reader versions 2015.006.30497 and earlier
Description
The issue is related to insufficiently robust encryption in Adobe Acrobat and Reader, which could allow attackers to bypass security features. Successful exploitation of this vulnerability may lead to a security feature bypass, potentially allowing a remote attacker to bypass existing protection mechanisms in the context of the current user.
Recommendations
For versions 2019.012.20035 and earlier, update to a version later than 2019.012.20035 to resolve the issue.
For versions 2017.011.30142 and earlier, update to a version later than 2017.011.30142 to resolve the issue.
For versions 2015.006.30497 and earlier, update to a version later than 2015.006.30497 to resolve the issue.
Correção
Inadequate Encryption Strength
Use of a Broken Cryptographic Algorithm
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Acrobat
Reader