Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SGI file in the DoReadContinue function, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
History

Mon, 16 Sep 2024 19:15:00 +0000

Type Values Removed Values Added
Title Adobe After Effects SGI File Parsing Memory Corruption Arbitrary Code Execution Adobe After Effects SGI File Parsing Memory Corruption Arbitrary Code Execution

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2021-11-18T16:20:26.385009Z

Updated: 2024-09-16T18:59:06.580Z

Reserved: 2021-09-08T00:00:00

Link: CVE-2021-40755

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-11-18T17:15:10.127

Modified: 2024-11-21T06:24:42.670

Link: CVE-2021-40755

cve-icon Redhat

No data.