PT-2019-5945 · Adobe · Acrobat+1
Published
2019-12-10
·
Updated
2021-09-08
·
CVE-2019-16454
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat versions 2019.021.20056 and earlier
Adobe Acrobat versions 2017.011.30152 and earlier
Adobe Acrobat versions 2015.006.30505 and earlier
Adobe Acrobat Reader versions 2019.021.20056 and earlier
Adobe Acrobat Reader versions 2017.011.30152 and earlier
Adobe Acrobat Reader versions 2015.006.30505 and earlier
Description
The issue is related to an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. This vulnerability can be exploited by an attacker using a specially crafted file, allowing them to execute arbitrary code in the context of the current user.
Recommendations
For Adobe Acrobat and Reader versions 2019.021.20056 and earlier, update to a version later than 2019.021.20056.
For Adobe Acrobat and Reader versions 2017.011.30152 and earlier, update to a version later than 2017.011.30152.
For Adobe Acrobat and Reader versions 2015.006.30505 and earlier, update to a version later than 2015.006.30505.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acrobat
Acrobat Reader