← Back

CVE-2019-7784

nvd nist
Published: May 22, 2019Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have a double free vulnerability. Successful exploitation could lead to arbitrary code execution.

Affected (6)

Adobe
2 products
Acrobat Dc
Acrobat Reader Dc
Configuration A
6 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Adobe
Acrobat Dc
From 15.006.30060 to 15.006.30495
Acrobat Dc
From 17.011.30056 to 17.011.30140
Acrobat Dc
From 15.008.20082 to 19.010.20100
Adobe
Acrobat Reader Dc
From 15.006.30060 to 15.006.30493
Acrobat Reader Dc
From 17.011.30059 to 17.011.30138
Acrobat Reader Dc
From 15.008.20082 to 19.010.20099
Running on/withPlatform Versions
Apple
Mac Os X
All versions
Microsoft
Windows
All versions

Related CWEs

CWE-415
Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

References (4)

Source: psirt@adobe.com
Third Party AdvisoryVDB Entry
Source: psirt@adobe.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.