CVE-2021-43755

Adobe After Effects versions 22.0 (and earlier) and 18.4.2 (and earlier) are affected by an Out-of-bounds Write vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

01 Aug 2023, 09:15

Type Values Removed Values Added
Summary Adobe After Effects versions 22.0 (and earlier) and 18.4.2 (and earlier) are affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability. Adobe After Effects versions 22.0 (and earlier) and 18.4.2 (and earlier) are affected by an Out-of-bounds Write vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

26 Jun 2023, 17:49

Type Values Removed Values Added
CWE CWE-788 CWE-787

24 Jun 2022, 17:05

Type Values Removed Values Added
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*
References (MISC) https://helpx.adobe.com/security/products/after_effects/apsb21-115.html - (MISC) https://helpx.adobe.com/security/products/after_effects/apsb21-115.html - Patch, Vendor Advisory
CVSS v2 : unknown
v3 : 7.8
v2 : 6.8
v3 : 7.8
First Time Adobe
Adobe after Effects
Apple macos
Microsoft
Microsoft windows
Apple

15 Jun 2022, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-06-15 20:15

Updated : 2023-12-10 14:22


NVD link : CVE-2021-43755

Mitre link : CVE-2021-43755

CVE.ORG link : CVE-2021-43755


JSON object : View

Products Affected

microsoft

  • windows

apple

  • macos

adobe

  • after_effects
CWE
CWE-787

Out-of-bounds Write