Vulnerability CVE-2019-7820


Published: 2019-05-22

Description:
Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.

Type:

CWE-704

(Incorrect Type Conversion or Cast)

Vendor: Adobe
Product: Acrobat dc 
Version:
19.010.20100
19.010.20099
19.010.20098
19.010.20091
19.010.20069
19.010.20064
19.008.20081
19.008.20080
19.008.20074
19.008.20071
18.011.20063
18.011.20058
18.011.20055
18.011.20040
18.011.20038
18.009.20050
18.009.20044
17.012.20098
17.012.20096
17.012.20095
17.012.20093
17.011.30140
17.011.30138
17.011.30127
17.011.30120
17.011.30113
17.011.30110
17.011.30106
17.011.30105
17.011.30102
17.011.30099
17.011.30096
17.011.30080
17.011.30079
17.011.30078
17.011.30070
17.011.30068
17.011.30066
17.011.30065
17.011.30059
17.011.30056
17.009.20058
17.009.20044
See more versions on NVD
Product: Acrobat reader dc 
Version:
19.010.20099
19.010.20098
19.010.20091
19.010.20069
19.010.20064
19.008.20081
19.008.20080
19.008.20074
19.008.20071
18.011.20063
18.011.20055
18.011.20040
18.011.20038
18.009.20050
18.009.20044
17.012.20098
17.012.20095
17.012.20093
17.011.30138
17.011.30127
17.011.30120
17.011.30113
17.011.30110
17.011.30106
17.011.30105
17.011.30102
17.011.30099
17.011.30096
17.011.30080
17.011.30079
17.011.30078
17.011.30070
17.011.30068
17.011.30066
17.011.30065
17.011.30059
17.009.20058
17.009.20044
See more versions on NVD
Product: Acrobat 
Version:
17.011.30120
17.011.30113
17.011.30110
17.011.30106
17.011.30105
17.011.30102
17.011.30099
17.011.30096
17.011.30080
17.011.30079
17.011.30078
17.011.30070
17.011.30068
17.011.30065
17.011.30059
17.011.30056
See more versions on NVD
Product: Acrobat reader 
Version:
17.011.30102
17.011.30096
17.011.30059
See more versions on NVD

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://www.securityfocus.com/bid/108315
https://helpx.adobe.com/security/products/acrobat/apsb19-18.html
https://www.zerodayinitiative.com/advisories/ZDI-19-504/

Related CVE
CVE-2019-8106
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8105
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8104
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8103
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8102
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8101
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an integer...
CVE-2019-8100
Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-b...
CVE-2019-8099
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an integer...

Copyright 2019, cxsecurity.com

 

Back to Top