What is the severity of CVE-2019-7766?

CVE-2019-7766 is classified as a critical severity vulnerability due to its potential to allow arbitrary code execution.

How do I fix CVE-2019-7766?

To fix CVE-2019-7766, users should update Adobe Acrobat or Reader to the latest version that has patched the vulnerability.

What versions of Adobe Acrobat are affected by CVE-2019-7766?

CVE-2019-7766 affects Adobe Acrobat versions 2019.010.20100 and earlier, 2017.011.30140 and earlier, and 2015.006.30495 and earlier.

What types of attacks can CVE-2019-7766 enable?

Successful exploitation of CVE-2019-7766 can enable attackers to execute arbitrary code on the victim's system.

Is there any workaround for CVE-2019-7766?

There are no official workarounds for CVE-2019-7766, so it’s recommended to apply the security update as soon as possible.

Vulnerability/
CVE-2019-7766

critical

CWE

416

22/5/2019

4/8/2024

CVE-2019-7766: Use After Free

First published: Wed May 22 2019(Updated: )

Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader DC	>=15.006.30060<=15.006.30495
Adobe Acrobat Reader DC	>=15.008.20082<=19.010.20100
Adobe Acrobat Reader DC	>=17.011.30056<=17.011.30140
Adobe Acrobat Reader	>=15.006.30060<=15.006.30493
Adobe Acrobat Reader	>=15.008.20082<=19.010.20099
Adobe Acrobat Reader	>=17.011.30059<=17.011.30138
Apple iOS and macOS
Microsoft Windows Operating System

Remedy

https://helpx.adobe.com/security/products/acrobat/apsb19-18.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-7766?
CVE-2019-7766 is classified as a critical severity vulnerability due to its potential to allow arbitrary code execution.
How do I fix CVE-2019-7766?
To fix CVE-2019-7766, users should update Adobe Acrobat or Reader to the latest version that has patched the vulnerability.
What versions of Adobe Acrobat are affected by CVE-2019-7766?
CVE-2019-7766 affects Adobe Acrobat versions 2019.010.20100 and earlier, 2017.011.30140 and earlier, and 2015.006.30495 and earlier.
What types of attacks can CVE-2019-7766 enable?
Successful exploitation of CVE-2019-7766 can enable attackers to execute arbitrary code on the victim's system.
Is there any workaround for CVE-2019-7766?
There are no official workarounds for CVE-2019-7766, so it’s recommended to apply the security update as soon as possible.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/remedy
agent/event
agent/first-publish-date
agent/description
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/adobe acrobat reader dc
version/adobe acrobat reader dc/15.006.30060
version/adobe acrobat reader dc/15.006.30495
version/adobe acrobat reader dc/15.008.20082
version/adobe acrobat reader dc/19.010.20100
version/adobe acrobat reader dc/17.011.30056
version/adobe acrobat reader dc/17.011.30140
canonical/adobe acrobat reader
version/adobe acrobat reader/15.006.30060
version/adobe acrobat reader/15.006.30493
version/adobe acrobat reader/15.008.20082
version/adobe acrobat reader/19.010.20099
version/adobe acrobat reader/17.011.30059
version/adobe acrobat reader/17.011.30138
vendor/apple
canonical/apple ios and macos
vendor/microsoft
canonical/microsoft windows operating system