Login Sign Up

CVE-2019-8246

9.8 CRITICAL
Remote Code Execution

📋 TL;DR

CVE-2019-8246 is an out-of-bounds write vulnerability in Adobe Media Encoder that allows attackers to execute arbitrary code on affected systems. This affects users running Adobe Media Encoder 13.1 and earlier versions. Successful exploitation could give attackers full control over the compromised system.

💻 Affected Systems

Products:
  • Adobe Media Encoder
Versions: 13.1 and earlier
Operating Systems: Windows, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of affected versions are vulnerable regardless of configuration settings.

📦 What is this software?

Media Encoder by Adobe

View all CVEs affecting Media Encoder →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with attacker gaining full administrative privileges, data theft, ransomware deployment, and lateral movement within the network.

🟠

Likely Case

Local privilege escalation leading to malware installation, data exfiltration, and persistence mechanisms being established on the affected workstation.

🟢

If Mitigated

Limited impact due to application sandboxing, network segmentation, and proper endpoint protection blocking exploitation attempts.

🌐 Internet-Facing: LOW with brief explanation
🏢 Internal Only: HIGH with brief explanation

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction such as opening a malicious file. No public exploit code is available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 13.1.1 and later

Vendor Advisory: https://helpx.adobe.com/security/products/media-encoder/apsb19-52.html

Restart Required: Yes

Instructions:

1. Open Adobe Creative Cloud application. 2. Navigate to the 'Apps' section. 3. Find Adobe Media Encoder and click 'Update'. 4. Alternatively, download the update directly from Adobe's website. 5. Restart the application after installation.

🔧 Temporary Workarounds

Restrict file processing

all

Limit Media Encoder to only process files from trusted sources and disable automatic file processing features.

🧯 If You Can't Patch

  • Remove Adobe Media Encoder from affected systems entirely
  • Implement application whitelisting to prevent execution of Media Encoder

🔍 How to Verify

Check if Vulnerable:

Check Adobe Media Encoder version via Help > About Media Encoder. If version is 13.1 or earlier, the system is vulnerable.

Check Version:

On Windows: Check registry at HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Media Encoder\Version. On macOS: Check /Applications/Adobe Media Encoder/Contents/Info.plist

Verify Fix Applied:

Verify version is 13.1.1 or later in Help > About Media Encoder. Test with known safe media files to ensure functionality.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with memory access violations
  • Unusual process creation from Media Encoder
  • Failed file parsing attempts

Network Indicators:

  • Unusual outbound connections from Media Encoder process
  • DNS requests to suspicious domains

SIEM Query:

Process:MediaEncoder.exe AND (EventID:1000 OR EventID:1001) OR Process:MediaEncoder.exe AND NetworkConnection:Outbound

📊 Metadata

CVE ID: CVE-2019-8246
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: November 14, 2019
Last Updated: May 5, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-8246, you might also want to check these:

CVE-2019-5684 10.0

This vulnerability in NVIDIA Windows GPU Display Drivers allows specially crafted DirectX shaders to...

Same vulnerability type (CWE-787)
CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2019-5049 10.0

This vulnerability allows an attacker to execute arbitrary code on systems with vulnerable AMD graph...

Same vulnerability type (CWE-787)