Adobe After Effects version 18.2.1 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/after_effects/apsb21-54.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
08 Sep 2021, 16:41
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://helpx.adobe.com/security/products/after_effects/apsb21-54.html - Patch, Vendor Advisory | |
CPE | cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 3.3 |
02 Sep 2021, 17:21
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-09-02 17:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-36018
Mitre link : CVE-2021-36018
CVE.ORG link : CVE-2021-36018
JSON object : View
Products Affected
adobe
- after_effects
microsoft
- windows
CWE
CWE-125
Out-of-bounds Read