Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SGI file in the DoReadContinue function, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Metrics
Affected Vendors & Products
References
History
Mon, 16 Sep 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | Adobe After Effects SGI File Parsing Memory Corruption Arbitrary Code Execution | Adobe After Effects SGI File Parsing Memory Corruption Arbitrary Code Execution |
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2021-11-18T16:20:26.385009Z
Updated: 2024-09-16T18:59:06.580Z
Reserved: 2021-09-08T00:00:00
Link: CVE-2021-40755
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-11-18T17:15:10.127
Modified: 2024-11-21T06:24:42.670
Link: CVE-2021-40755
Redhat
No data.