Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-19707

Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019.008.20081 and earlier, 2017.011.30106 and earlier version, 2017.011.30105 and earlier version, 2015.006.30457 and earlier, and 2015.006.30456 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

Published

2019-01-18T17:29:38.840

Last Modified

2024-11-21T03:58:24.900

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-416
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application adobe acrobat_dc ≤ 15.006.30457 Yes
Application adobe acrobat_dc ≤ 19.008.20081 Yes
Application adobe acrobat_dc ≤ 17.011.30106 Yes
Application adobe acrobat_reader_dc ≤ 15.006.30457 Yes
Application adobe acrobat_reader_dc ≤ 19.008.20081 Yes
Application adobe acrobat_reader_dc ≤ 17.011.30106 Yes
Operating System microsoft windows - No
Application adobe acrobat_dc ≤ 15.006.30456 Yes
Application adobe acrobat_dc ≤ 19.008.20080 Yes
Application adobe acrobat_dc ≤ 17.011.30105 Yes
Application adobe acrobat_reader_dc ≤ 15.006.30456 Yes
Application adobe acrobat_reader_dc ≤ 19.008.20080 Yes
Application adobe acrobat_reader_dc ≤ 17.011.30105 Yes
Operating System apple mac_os_x - No
References