Zscaler, working with Microsoft through their MAPP program, has proactively deployed protections for the following 4 vulnerabilities included in the April 2019 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the April release and deploy additional protections as necessary.
APSB19-17 – Security updates available for Adobe Acrobat and Reader.
Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user.
CVE-2019-7061 – Out-of-Bounds Read Vulnerability leading to Information Disclosure.
CVE-2019-7112 – Use After Free Vulnerability leading to Arbitrary Code Execution.
CVE-2019-7114 – Out-of-Bounds Read Vulnerability leading to Information Disclosure.
CVE-2019-7125 – Heap Overflow Vulnerability leading to Arbitrary Code Execution.