CVE-2019-7796

Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

Published: May 22, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-7796
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
adobe / acrobat_dc	15.006.30060	15.006.30495.x
adobe / acrobat_dc	15.008.20082	19.010.20100.x
adobe / acrobat_dc	17.011.30056	17.011.30140.x
adobe / acrobat_reader_dc	15.006.30060	15.006.30493.x
adobe / acrobat_reader_dc	15.008.20082	19.010.20099.x
adobe / acrobat_reader_dc	17.011.30059	17.011.30138.x

http://www.securityfocus.com/bid/108320
https://helpx.adobe.com/security/products/acrobat/apsb19-18.html
https://www.zerodayinitiative.com/advisories/ZDI-19-496/

Vulnerability Database

CVE-2019-7796