Home

CVE-2019-7131

Description

Adobe Acrobat and Reader versions 2019.010.20064 and earlier, 2019.010.20064 and earlier, 2017.011.30110 and earlier version, and 2015.006.30461 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
3.906

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2018-16011,CVE-2018-16018,CVE-2019-7131 are affected in Acrobat DC 19.010.20064Windows
Vulnerabilities CVE-2018-16011,CVE-2018-16018,CVE-2019-7131 are fixed in Adobe Acrobat Reader MUI DC (Continuous Track) update - All languages 19.010.20069 (APSB19-02)(CVE-2018-19725)Windows
Vulnerabilities CVE-2018-16011,CVE-2018-16018,CVE-2019-7131 are fixed in Adobe Acrobat Reader MUI DC (Classic Track) update - All languages 15.006.30464 (APSB19-02)(CVE-2018-19725)Windows
Multiple Vulnerabilities are affected in Adobe Acrobat DC for MAC 15.006.30457Mac
Vulnerabilities CVE-2018-16011,CVE-2018-16018,CVE-2019-7131 are affected in Adobe Acrobat DC for MAC 17.011.30110Mac
Vulnerabilities CVE-2018-16011,CVE-2018-16018,CVE-2019-7131 are affected in Adobe Acrobat Reader DC for MAC 19.010.20064Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343119Adobe Acrobat DC Pro and Standard (Continuous Track) update - All languages (24.004.20272)
PATCH-308723Adobe Acrobat Reader MUI DC (Continuous Track) update - All languages 19.010.20069 (APSB19-02)(CVE-2018-19725)
PATCH-308726Adobe Acrobat Reader MUI DC (Classic Track) update - All languages 15.006.30464 (APSB19-02)(CVE-2018-19725)
PATCH-611991Adobe Acrobat DC for MAC (25.001.20693)(Deployment-Only)
PATCH-611991Adobe Acrobat DC for MAC (25.001.20693)(Deployment-Only)
PATCH-611989Adobe Acrobat Reader DC for MAC (25.001.20693)(Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234