Home

CVE-2019-7072

Description

Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution .

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
2.438

Associated Vulnerability

VulnerabilityOS Platform
Adobe Acrobat Reader DC (Continuous Track) update - All languages (19.010.20091) (APSB19-07)Windows
Adobe Acrobat DC Pro and Standard (Classic Track) update - All languages (15.006.30475) (APSB19-07)Windows
Adobe Acrobat DC Pro and Standard (Continuous Track) update - All languages 19.010.20091 (APSB19-07)Windows
Adobe Acrobat 2017 Pro and Standard (Acrobat 2017 Track) update - All languages 17.011.30120 (APSB19-07)Windows
Adobe Acrobat Reader MUI 2017 Windows (Acrobat 2017 Track) 17.011.30120 (APSB19-07)Windows
Adobe Acrobat Reader DC 19.010.20091Windows
Multiple vulnerabilities affected in Acrobat DC 19.010.20069Windows
Multiple Vulnerabilities are affected in Adobe Acrobat DC for MAC 15.006.30464Mac
Multiple Vulnerabilities are affected in Adobe Acrobat DC for MAC 17.011.30113Mac
Multiple Vulnerabilities are affected in Adobe Acrobat Reader DC for MAC 19.010.20069Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-308972Adobe Acrobat Reader DC (Continuous Track) update - All languages (19.010.20091) (APSB19-07)
PATCH-308973Adobe Acrobat DC Pro and Standard (Classic Track) update - All languages (15.006.30475) (APSB19-07)
PATCH-308976Adobe Acrobat DC Pro and Standard (Continuous Track) update - All languages 19.010.20091 (APSB19-07)
PATCH-308977Adobe Acrobat 2017 Pro and Standard (Acrobat 2017 Track) update - All languages 17.011.30120 (APSB19-07)
PATCH-308978Adobe Acrobat Reader MUI 2017 Windows (Acrobat 2017 Track) 17.011.30120 (APSB19-07)
PATCH-343120Adobe Acrobat Reader DC (24.004.20272)
PATCH-343119Adobe Acrobat DC Pro and Standard (Continuous Track) update - All languages (24.004.20272)
PATCH-611991Adobe Acrobat DC for MAC (25.001.20693)(Deployment-Only)
PATCH-611991Adobe Acrobat DC for MAC (25.001.20693)(Deployment-Only)
PATCH-611989Adobe Acrobat Reader DC for MAC (25.001.20693)(Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234