Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2019-16470
HistorySep 11, 2023 - 2:15 p.m.

CVE-2019-16470

2023-09-1114:15:07
CWE-121
CWE-787
[email protected]
web.nvd.nist.gov
5
cve-2019-16470
adobe acrobat reader
buffer overflow
arbitrary code execution
user interaction
malicious file

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.073

Percentile

94.1%

JSON

Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected configurations

Nvd
Node
adobeacrobat_dcRange15.006.3006015.006.30505classic
OR
adobeacrobat_dcRange15.008.2008219.021.20056continuous
OR
adobeacrobat_dcRange17.011.3005917.011.30152classic
OR
adobeacrobat_reader_dcRange15.006.3006015.006.30505classic
OR
adobeacrobat_reader_dcRange15.008.2008219.021.20056continuous
OR
adobeacrobat_reader_dcRange17.011.3005917.011.30152classic
AND
applemacosMatch-
OR
microsoftwindowsMatch-
Node
adobeacrobat_dcRange17.011.3005917.011.30155classic
AND
applemacosMatch-
VendorProductVersionCPE
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
applemacos-cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Related

cvelist 1
prion 1
cnvd 1
cve 1
kaspersky 1
openvas 12
adobe 1
nessus 4
cvelist
cvelist
CVE-2019-16470 CoolType.dll crash - Tianfu Cup
2023-09-11 13:50:57
prion
prion
Stack overflow
2023-09-11 14:15:00
cnvd
cnvd
Command Execution Vulnerability in 4A Unified Security Control Platform of Beijing Qixingchen Information Security Technology Co.
2023-09-15 00:00:00
cve
cve
CVE-2019-16470
2023-09-11 14:15:07
kaspersky
kaspersky
KLA11676 Multiple vulnerabilities in Adobe Acrobat
2019-10-15 00:00:00
openvas
openvas
Adobe Reader 2017 Security Updates (APSB19-55) - Mac OS X
2019-12-12 00:00:00
Adobe Reader DC (Classic) 2015 Security Updates (APSB19-55) - Windows
2019-12-12 00:00:00
Adobe Acrobat DC 2015 Security Updates (APSB19-55) - Mac OS X
2019-12-12 00:00:00
adobe
adobe
APSB19-55 - Security update available for Adobe Acrobat and Reader
2019-12-10 00:00:00
nessus
nessus
Adobe Acrobat < 2015.006.30508 / 2017.011.30156 / 2019.021.20058 Multiple Vulnerabilities (APSB19-55)
2019-12-13 00:00:00
Adobe Reader < 2015.006.30508 / 2017.011.30156 / 2019.021.20058 Multiple Vulnerabilities (APSB19-55)
2019-12-13 00:00:00
Adobe Acrobat < 2015.006.30508 / 2017.011.30156 / 2019.021.20058 Multiple Vulnerabilities (APSB19-55) (macOS)
2019-12-13 00:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.073

Percentile

94.1%

JSON
Related for NVD:CVE-2019-16470
cvelist1prion1cnvd1cve1kaspersky1openvas12adobe1nessus4