CVE-2019-8226 : Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 a

Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier, and 2015.006.30503 and earlier have an incomplete implementation of security mechanism vulnerability. Successful exploitation could lead to information disclosure.

Published 2019-10-17 21:15:16

Updated 2021-09-08 17:22:25

Source Adobe Systems Incorporated

View at NVD, CVE.org

Vulnerability category: Information leak

Products affected by CVE-2019-8226

Adobe » Acrobat Dc » Classic Edition
Versions from including (>=) 17.011.30059 and before (<) 17.011.30150
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Acrobat Dc » Classic Edition
Versions from including (>=) 15.006.30060 and before (<) 15.006.30504
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Acrobat Dc » Continuous Edition
Versions from including (>=) 15.008.20082 and before (<) 19.021.20047
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Acrobat Reader Dc » Continuous Edition
Versions from including (>=) 15.008.20082 and before (<) 19.021.20047
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Acrobat Reader Dc » Classic Edition
Versions from including (>=) 17.011.30059 and before (<) 17.011.30150
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Acrobat Reader Dc » Classic Edition
Versions from including (>=) 15.006.30060 and before (<) 15.006.30504
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*
Matching versions
When used together with: Apple » Macos » Version: N/A
When used together with: Microsoft » Windows » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2019-8226

EPSS FAQ

1.91%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 82 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2019-8226

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

References for CVE-2019-8226

https://helpx.adobe.com/security/products/acrobat/apsb19-49.html

Adobe Security Bulletin
Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2019-8226

Products affected by CVE-2019-8226

Exploit prediction scoring system (EPSS) score for CVE-2019-8226

CVSS scores for CVE-2019-8226

References for CVE-2019-8226