CVE-2019-7054: Buffer Overflow
First published: Fri May 24 2019(Updated: )
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution .
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Acrobat Reader DC | >=15.006.30060<=15.006.30464 | |
| Adobe Acrobat Reader DC | >=15.008.20082<=19.010.20069 | |
| Adobe Acrobat Reader DC | >=17.011.30059<=17.011.30113 | |
| Adobe Acrobat Reader | >=15.006.30060<=15.006.30464 | |
| Adobe Acrobat Reader | >=15.008.20082<=19.010.20069 | |
| Adobe Acrobat Reader | >=17.011.30059<=17.011.30113 | |
| macOS | ||
| Microsoft Windows Operating System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-7054?
CVE-2019-7054 has a severity rating of critical due to its potential for arbitrary code execution.
How do I fix CVE-2019-7054?
To mitigate CVE-2019-7054, upgrade Adobe Acrobat and Reader to the latest versions available.
Which versions of software are affected by CVE-2019-7054?
CVE-2019-7054 affects Adobe Acrobat and Reader versions up to and including 2019.010.20069, 2017.011.30113, and 2015.006.30464.
What types of systems are vulnerable to CVE-2019-7054?
CVE-2019-7054 impacts users running specific versions of Adobe Acrobat and Reader on both Windows and macOS platforms.
Can CVE-2019-7054 lead to data loss?
Yes, successful exploitation of CVE-2019-7054 may lead to arbitrary code execution, potentially resulting in data loss.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/adobe
- canonical/adobe acrobat reader dc
- version/adobe acrobat reader dc/15.006.30060
- version/adobe acrobat reader dc/15.006.30464
- version/adobe acrobat reader dc/15.008.20082
- version/adobe acrobat reader dc/19.010.20069
- version/adobe acrobat reader dc/17.011.30059
- version/adobe acrobat reader dc/17.011.30113
- canonical/adobe acrobat reader
- version/adobe acrobat reader/15.006.30060
- version/adobe acrobat reader/15.006.30464
- version/adobe acrobat reader/15.008.20082
- version/adobe acrobat reader/19.010.20069
- version/adobe acrobat reader/17.011.30059
- version/adobe acrobat reader/17.011.30113
- vendor/apple
- canonical/macos
- vendor/microsoft
- canonical/microsoft windows operating system