CVE-2019-8043 Detail

CVE-2019-8043

Score / Severity

7.5

High

CVE Descriptions

Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .

CVE Informations

Related Weaknesses

CWE-ID	Weakness Name	Source
CWE-125	Out-of-bounds Read The product reads data past the end, or before the beginning, of the intended buffer.

Metrics

Metrics	Score	Severity	CVSS Vector	Source
V3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N More informations Base: Exploitabilty Metrics The Exploitability metrics reflect the characteristics of the thing that is vulnerable, which we refer to formally as the vulnerable component. Attack Vector This metric reflects the context by which vulnerability exploitation is possible. Network The vulnerable component is bound to the network stack and the set of possible attackers extends beyond the other options listed below, up to and including the entire Internet. Such a vulnerability is often termed “remotely exploitable” and can be thought of as an attack being exploitable at the protocol level one or more network hops away (e.g., across one or more routers). Attack Complexity This metric describes the conditions beyond the attacker’s control that must exist in order to exploit the vulnerability. Low Specialized access conditions or extenuating circumstances do not exist. An attacker can expect repeatable success when attacking the vulnerable component. Privileges Required This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability. None The attacker is unauthorized prior to attack, and therefore does not require any access to settings or files of the vulnerable system to carry out an attack. User Interaction This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component. None The vulnerable system can be exploited without interaction from any user. Base: Scope Metrics The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope. Scope Formally, a security authority is a mechanism (e.g., an application, an operating system, firmware, a sandbox environment) that defines and enforces access control in terms of how certain subjects/actors (e.g., human users, processes) can access certain restricted objects/resources (e.g., files, CPU, memory) in a controlled manner. All the subjects and objects under the jurisdiction of a single security authority are considered to be under one security scope. If a vulnerability in a vulnerable component can affect a component which is in a different security scope than the vulnerable component, a Scope change occurs. Intuitively, whenever the impact of a vulnerability breaches a security/trust boundary and impacts components outside the security scope in which vulnerable component resides, a Scope change occurs. Unchanged An exploited vulnerability can only affect resources managed by the same security authority. In this case, the vulnerable component and the impacted component are either the same, or both are managed by the same security authority. Base: Impact Metrics The Impact metrics capture the effects of a successfully exploited vulnerability on the component that suffers the worst outcome that is most directly and predictably associated with the attack. Analysts should constrain impacts to a reasonable, final outcome which they are confident an attacker is able to achieve. Confidentiality Impact This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. High There is a total loss of confidentiality, resulting in all resources within the impacted component being divulged to the attacker. Alternatively, access to only some restricted information is obtained, but the disclosed information presents a direct, serious impact. For example, an attacker steals the administrator's password, or private encryption keys of a web server. Integrity Impact This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information. None There is no loss of integrity within the impacted component. Availability Impact This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. None There is no impact to availability within the impacted component. Temporal Metrics The Temporal metrics measure the current state of exploit techniques or code availability, the existence of any patches or workarounds, or the confidence in the description of a vulnerability. Environmental Metrics These metrics enable the analyst to customize the CVSS score depending on the importance of the affected IT asset to a user’s organization, measured in terms of Confidentiality, Integrity, and Availability.	[email protected]
V2	5		AV:N/AC:L/Au:N/C:P/I:N/A:N	[email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

EPSS First.org

Exploit information

Exploit Database EDB-ID : 47270

Publication date : 2019-08-14 22h00 +00:00
Author : Google Security Research
EDB Verified : Yes

We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- (180c.327c): Access violation - code c0000005 (first chance) First chance exceptions are reported before any exception handling. This exception may be expected and handled. eax=27829020 ebx=1537d7d8 ecx=00000030 edx=00000001 esi=27828ff0 edi=1537d890 eip=609ed114 esp=2ad6a1c0 ebp=2ad6a208 iopl=0 nv up ei pl nz na po nc cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010202 VCRUNTIME140!TrailingDownVec+0x1d4: 609ed114 f30f6f4e10 movdqu xmm1,xmmword ptr [esi+10h] ds:002b:27829000=???????????????????????????????? 0:014> kb # ChildEBP RetAddr Args to Child 00 2ad6a1c4 10dfaec3 1537d890 27828ff0 00000030 VCRUNTIME140!TrailingDownVec+0x1d4 [f:\dd\vctools\crt\vcruntime\src\string\i386\memcpy.asm @ 635] 01 2ad6a208 10d737f2 153156b0 27828ff0 00000010 AGM!AGMGetVersion+0x74273 02 2ad6a244 10d7522f 2ad6a27c 153156b0 27828ff0 AGM!AGMTerminate+0x14f42 03 2ad6a290 0f5ab6b8 2ad6a2b4 153158b8 27828ff0 AGM!AGMTerminate+0x1697f 04 2ad6a2b8 0f49861b 1b7a27f4 27828ff0 00000010 AcroRd32!AX_PDXlateToHostEx+0x1fd668 05 2ad6a2f8 0f692cea 1b7a27f4 27828ff0 00000010 AcroRd32!AX_PDXlateToHostEx+0xea5cb 06 2ad6a414 0f21a7d9 00000001 d497abe9 00000000 AcroRd32!AX_PDXlateToHostEx+0x2e4c9a 07 2ad6a4c8 0f219928 2ad6a870 00000000 d497a735 AcroRd32!DllCanUnloadNow+0x181819 08 2ad6a814 0f2198e6 2ad6a870 1b577188 d497a76d AcroRd32!DllCanUnloadNow+0x180968 09 2ad6a84c 0f2197c1 2ad6a870 1b577188 2ad6a8dc AcroRd32!DllCanUnloadNow+0x180926 0a 2ad6a8b8 0f218788 c0010000 000001bd 1b577188 AcroRd32!DllCanUnloadNow+0x180801 0b 2ad6ad18 0f215cd7 2ad6b01c 0c3d578c c0010000 AcroRd32!DllCanUnloadNow+0x17f7c8 0c 2ad6c4f8 0f215955 0c3d578c c0010000 000001bd AcroRd32!DllCanUnloadNow+0x17cd17 0d 2ad6c5c8 0f1f93ed d497c989 1b577188 00000000 AcroRd32!DllCanUnloadNow+0x17c995 0e 2ad6c6a8 0f270753 00000000 00000000 00000000 AcroRd32!DllCanUnloadNow+0x16042d 0f 2ad6c708 0f218184 00000000 00000000 00000000 AcroRd32!CTJPEGDecoderRelease+0x358c3 10 2ad6dedc 0f215955 0c3d5708 c0010000 000001be AcroRd32!DllCanUnloadNow+0x17f1c4 11 2ad6dfac 0f1f93ed d497efad 0c3c08a0 00000000 AcroRd32!DllCanUnloadNow+0x17c995 12 2ad6e08c 0f270753 00000001 00000000 00000000 AcroRd32!DllCanUnloadNow+0x16042d 13 2ad6e0ec 0f218184 00000001 00000000 00000000 AcroRd32!CTJPEGDecoderRelease+0x358c3 14 2ad6f8c0 0f215955 0c3d5684 c0010000 000001b2 AcroRd32!DllCanUnloadNow+0x17f1c4 15 2ad6f990 0f1f93ed d497f551 00000000 1b79f458 AcroRd32!DllCanUnloadNow+0x17c995 16 2ad6fa70 0f222848 00000000 00000000 00000000 AcroRd32!DllCanUnloadNow+0x16042d 17 2ad6fac8 0f222647 00000000 00000000 0f2220d0 AcroRd32!DllCanUnloadNow+0x189888 18 2ad6fb34 0f221fec d497f47d 0f221540 15ab5938 AcroRd32!DllCanUnloadNow+0x189687 19 2ad6fb5c 0f221551 0d104ab8 0f221540 2ad6fb80 AcroRd32!DllCanUnloadNow+0x18902c 1a 2ad6fb6c 73cf8674 15ab5938 73cf8650 e681ff4b AcroRd32!DllCanUnloadNow+0x188591 1b 2ad6fb80 77285e17 15ab5938 c47e6da9 00000000 KERNEL32!BaseThreadInitThunk+0x24 1c 2ad6fbc8 77285de7 ffffffff 772aad8d 00000000 ntdll!__RtlUserThreadStart+0x2f 1d 2ad6fbd8 00000000 0f221540 15ab5938 00000000 ntdll!_RtlUserThreadStart+0x1b 0:014> !heap -p -a 27828ff0 address 27828ff0 found in _DPH_HEAP_ROOT @ c1a1000 in busy allocation ( DPH_HEAP_BLOCK: UserAddr UserSize - VirtAddr VirtSize) 28631e38: 27828ff0 10 - 27828000 2000 ? windows_storage!CStorageItemsDataFormat::SetFromStorageItemsArray<Windows::Foundation::Collections::IIterable<Windows::Storage::StorageFolder *>,<lambda_3b893a90b183593f6fe9d34608c3a173> >+b4 66d6a8d0 verifier!AVrfDebugPageHeapAllocate+0x00000240 77304b26 ntdll!RtlDebugAllocateHeap+0x0000003c 7725e3e6 ntdll!RtlpAllocateHeap+0x000000f6 7725cfb7 ntdll!RtlpAllocateHeapInternal+0x000002b7 7725ccee ntdll!RtlAllocateHeap+0x0000003e 66e5aa2f vrfcore!VfCoreRtlAllocateHeap+0x0000001f 74a2f1f6 ucrtbase!_malloc_base+0x00000026 0f04fcd9 AcroRd32!AcroWinMainSandbox+0x00003ed9 0f6933e4 AcroRd32!AX_PDXlateToHostEx+0x002e5394 0f692a25 AcroRd32!AX_PDXlateToHostEx+0x002e49d5 0f21a7d9 AcroRd32!DllCanUnloadNow+0x00181819 0f219928 AcroRd32!DllCanUnloadNow+0x00180968 0f2198e6 AcroRd32!DllCanUnloadNow+0x00180926 0f2197c1 AcroRd32!DllCanUnloadNow+0x00180801 0f218788 AcroRd32!DllCanUnloadNow+0x0017f7c8 0f215cd7 AcroRd32!DllCanUnloadNow+0x0017cd17 0f215955 AcroRd32!DllCanUnloadNow+0x0017c995 0f1f93ed AcroRd32!DllCanUnloadNow+0x0016042d 0f270753 AcroRd32!CTJPEGDecoderRelease+0x000358c3 0f218184 AcroRd32!DllCanUnloadNow+0x0017f1c4 0f215955 AcroRd32!DllCanUnloadNow+0x0017c995 0f1f93ed AcroRd32!DllCanUnloadNow+0x0016042d 0f270753 AcroRd32!CTJPEGDecoderRelease+0x000358c3 0f218184 AcroRd32!DllCanUnloadNow+0x0017f1c4 0f215955 AcroRd32!DllCanUnloadNow+0x0017c995 0f1f93ed AcroRd32!DllCanUnloadNow+0x0016042d 0f222848 AcroRd32!DllCanUnloadNow+0x00189888 0f222647 AcroRd32!DllCanUnloadNow+0x00189687 0f221fec AcroRd32!DllCanUnloadNow+0x0018902c 0f221551 AcroRd32!DllCanUnloadNow+0x00188591 73cf8674 KERNEL32!BaseThreadInitThunk+0x00000024 77285e17 ntdll!__RtlUserThreadStart+0x0000002f --- cut --- Notes: - Reproduces on Adobe Acrobat Reader DC (2019.012.20035) on Windows 10, with the PageHeap option in Application Verifier enabled. - The crash occurs immediately after opening the PDF document. - The crash occurs inside of the memcpy() function while trying to read from out-of-bounds memory, and its arguments indicate that the program tries to copy 0x30 (48) bytes out of a 0x10-byte heap-based buffer. - Attached samples: poc1.pdf (crashing file), poc2.pdf (crashing file), original.pdf (original file). - We have minimized the difference between the original and mutated files down to a single byte at offset 0x30b35f, changed from the original value of 0x11 to 0x10 (in the first sample) or to 0x15 (in the second sample). This byte appears to reside inside of a binary JP2K image stream. - We classify the bug as an information disclosure issue. Proof of Concept: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47270.zip

Products Mentioned

Configuraton 0

Adobe>>Acrobat_dc >> Version From (including) 15.006.30060 To (excluding) 15.006.30499

Adobe>>Acrobat_dc >> Version 15.006.30060 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30094 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30096 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30097 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30119 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30121 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30172 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30173 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30174 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30198 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30201 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30243 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30244 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30279 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30280 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30306 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30352 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30354 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30355 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30392 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30394 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30413 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30416 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30417 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30418 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30434 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30448 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30452 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30456 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30457 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30464 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30475 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30482 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30493 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30495 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30497 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.006.30498 (Open CPE detail)

Adobe>>Acrobat_dc >> Version From (including) 15.008.20082 To (excluding) 19.012.20036

Adobe>>Acrobat_dc >> Version 15.008.20082 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.009.20069 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.009.20071 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.009.20077 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.009.20079 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.010.20056 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.010.20059 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.010.20060 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.016.20039 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.016.20041 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.016.20045 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.017.20050 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.017.20053 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.020.20039 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.020.20042 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.023.20053 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.023.20056 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 15.023.20070 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.000.0000 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.009.20044 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.009.20058 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.012.20093 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.012.20095 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.012.20096 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.012.20098 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.0 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.009.20044 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.009.20050 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20035 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20036 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20038 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20040 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20055 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20058 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 18.011.20063 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.008.20071 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.008.20074 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.008.20080 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.008.20081 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20064 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20069 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20091 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20098 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20099 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.010.20100 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.012.20034 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 19.012.20035 (Open CPE detail)

Adobe>>Acrobat_dc >> Version From (including) 17.011.30059 To (excluding) 17.011.30144

Adobe>>Acrobat_dc >> Version 17.011.30059 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30065 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30066 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30068 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30070 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30078 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30079 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30080 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30096 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30099 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30102 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30105 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30106 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30110 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30113 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30120 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30127 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30138 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30140 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30142 (Open CPE detail)
Adobe>>Acrobat_dc >> Version 17.011.30143 (Open CPE detail)

Adobe>>Acrobat_reader_dc >> Version From (including) 15.006.30060 To (excluding) 15.006.30499

Adobe>>Acrobat_reader_dc >> Version 15.006.30060 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30094 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30096 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30097 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30119 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30121 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30172 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30173 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30174 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30198 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30201 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30243 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30244 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30279 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30280 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30306 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30352 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30354 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30355 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30392 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30394 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30413 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30416 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30417 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30418 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30434 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30448 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30452 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30456 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30457 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30461 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30464 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30475 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30482 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30493 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30495 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30497 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.006.30498 (Open CPE detail)

Adobe>>Acrobat_reader_dc >> Version From (including) 15.008.20082 To (excluding) 19.012.20036

Adobe>>Acrobat_reader_dc >> Version 15.008.20082 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.009.20069 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.009.20071 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.009.20077 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.009.20079 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.010.20056 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.010.20059 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.010.20060 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.016.20039 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.016.20041 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.016.20045 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.017.20050 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.017.20053 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.020.20039 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.020.20042 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.023.20053 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.023.20056 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 15.023.20070 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.000.0000 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.009.20044 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.009.20058 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.012.20093 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.012.20095 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.012.20098 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.0 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.009.20044 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.009.20050 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20035 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20036 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20038 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20040 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20055 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20058 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 18.011.20063 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.008.20071 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.008.20074 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.008.20080 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.008.20081 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20064 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20069 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20091 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20098 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20099 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.010.20100 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.012.20034 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 19.012.20035 (Open CPE detail)

Adobe>>Acrobat_reader_dc >> Version From (including) 17.011.30059 To (excluding) 17.011.30144

Adobe>>Acrobat_reader_dc >> Version 17.011.30059 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30065 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30066 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30068 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30070 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30078 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30079 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30080 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30096 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30099 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30102 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30105 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30106 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30110 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30113 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30120 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30127 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30138 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30140 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30142 (Open CPE detail)
Adobe>>Acrobat_reader_dc >> Version 17.011.30143 (Open CPE detail)

Apple>>Macos >> Version -

Apple>>Macos >> Version - (Open CPE detail)

Microsoft>>Windows >> Version -

Microsoft>>Windows >> Version - (Open CPE detail)
Microsoft>>Windows >> Version - (Open CPE detail)
Microsoft>>Windows >> Version - (Open CPE detail)
Microsoft>>Windows >> Version - (Open CPE detail)

References

https://helpx.adobe.com/security/products/acrobat/apsb19-41.html
Tags : x_refsource_CONFIRM

CVE-2019-8043 : Detail