After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
24 Feb 2023, 23:52
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-02-17 22:15
Updated : 2024-02-04 23:14
NVD link : CVE-2023-22239
Mitre link : CVE-2023-22239
CVE.ORG link : CVE-2023-22239
JSON object : View
Products Affected
apple
- macos
microsoft
- windows
adobe
- after_effects
CWE
CWE-20
Improper Input Validation