Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MP4 file.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/media-encoder/apsb21-118.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
19 Jul 2023, 17:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:adobe:media_encoder:22.0:*:*:*:*:*:*:* cpe:2.3:a:adobe:media_encoder:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
References | (MISC) https://helpx.adobe.com/security/products/media-encoder/apsb21-118.html - Vendor Advisory | |
First Time |
Adobe
Microsoft Apple Microsoft windows Adobe media Encoder Apple macos |
12 Jul 2023, 12:46
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-12 12:15
Updated : 2023-12-10 15:14
NVD link : CVE-2021-43758
Mitre link : CVE-2021-43758
CVE.ORG link : CVE-2021-43758
JSON object : View
Products Affected
microsoft
- windows
apple
- macos
adobe
- media_encoder
CWE
CWE-125
Out-of-bounds Read