APSB19-17 Security update available for Adobe Acrobat and Reader

2019-04-0900:00:00

helpx.adobe.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.426

Percentile

97.4%

JSON

Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Affected configurations

Vulners

Node

adobeacrobat_dcRange≤19.010.20098

adobeacrobat_reader_dcRange≤19.010.20098

adobeacrobat_2017Range≤17.011.30127

adobeacrobat_reader_2017Range≤17.011.30127

adobeacrobat_dcRange≤15.006.30482

adobeacrobat_reader_dcRange≤15.006.30482

VendorProductVersionCPE
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:*:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:*:*:*:*
adobeacrobat_2017*cpe:2.3:a:adobe:acrobat_2017:*:*:*:*:*:*:*:*
adobeacrobat_reader_2017*cpe:2.3:a:adobe:acrobat_reader_2017:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	acrobat_dc	*	cpe:2.3:a:adobe:acrobat_dc::::::::
adobe	acrobat_reader_dc	*	cpe:2.3:a:adobe:acrobat_reader_dc::::::::
adobe	acrobat_2017	*	cpe:2.3:a:adobe:acrobat_2017::::::::
adobe	acrobat_reader_2017	*	cpe:2.3:a:adobe:acrobat_reader_2017::::::::