CVE-2019-7053Out-of-bounds Read in Adobe Acrobat DC

CWE-125Out-of-bounds Read8 documents6 sources
Severity
7.5HIGHNVD
OSV5.5
EPSS
2.6%
top 14.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelAdobe Acrobat DCAdobe Acrobat Reader DC+1 more
Timeline
PublishedMay 24
Latest updateMay 24

Description

Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDadobe/acrobat_reader_dc15.006.3006015.006.30464+2
CVEListV5adobe/adobe_acrobat_and_reader2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier versions
NVDadobe/acrobat_dc15.006.3006015.006.30464+2
Ubuntulinux/linux_kernel< 4.15.0-76.86

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

4
GHSA
GHSA-pjwf-5j76-vxwv: Adobe Acrobat and Reader versions 20192022-05-24
OSV
linux, linux-aws, linux-oem vulnerabilities2020-01-28
OSV
linux-hwe, linux-aws-hwe vulnerabilities2020-01-28
CVEList
CVE-2019-7053: Adobe Acrobat and Reader versions 20192019-05-24

🕵️Threat Intelligence

3
Unit42
Unit 42 Vulnerability Research Team Discovers 23 New Vulnerabilities February 2019 Disclosures – Adobe and Microsoft2019-02-22
Unit42
Unit 42 Vulnerability Research Team Discovers 23 New Vulnerabilities February 2019 Disclosures – Adobe and Microsoft2019-02-22
Zscaler
Zscaler protects against 43 new vulnerabilities for Acrobat Reader | Zscaler
CVE-2019-7053 — Out-of-bounds Read in Adobe Acrobat DC | cvebase