CVE-2019-7800 — Out-of-bounds Write in Adobe Acrobat DC
Severity
8.8HIGHNVD
EPSS
6.4%
top 8.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 22
Latest updateMay 24
Description
Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages3 packages
▶CVEListV5adobe/adobe_acrobat_and_reader2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier version, 2017.011.30138 and earlier version, 2015.006.30495 and earlier, and 2015.006.30493 and earlier versions
Patches
🔴Vulnerability Details
2📋Vendor Advisories
5Cisco▶
Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Scripting Vulnerability↗2020-01-08
Cisco▶
Cisco IP Phone 7800 and 8800 Series Session Initiation Protocol Denial of Service Vulnerability↗2019-07-03
Cisco▶
Cisco IP Phone 7800 Series and 8800 Series Session Initiation Protocol XML Denial of Service Vulnerability↗2019-05-01
Cisco▶
Cisco IP Phone 7800 and 8800 Series Cisco Discovery Protocol and Link Layer Discovery Protocol Denial of Service Vulnerability↗2019-02-20