CVE-2019-8240

CWE-787Out-of-bounds Write3 documents3 sources
Severity
7.5HIGH
EPSS
1.5%
top 18.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe Bridge CCAdobe Adobe Bridge CC
Timeline
PublishedNov 14
Latest updateMay 24

Description

Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to information disclosure.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDadobe/bridge_cc< 10.0
CVEListV5adobe/adobe_bridge_cc9.1 and earlier versions

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-2536-j8mg-q936: Adobe Bridge CC versions 92022-05-24
CVEList
CVE-2019-8240: Adobe Bridge CC versions 92019-11-14
CVE-2019-8240 (HIGH CVSS 7.5) | Adobe Bridge CC versions 9.1 and ea | cvebase.io