Adobe After Effects up to 17.1 out-of-bounds write

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Adobe After Effects up to 17.1. It has been rated as critical. Affected by this issue is some unknown functionality. Upgrading eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1056194910/27/2020VulD...confirm_urlhttps://helpx.adobe.com/security/products/after_effects/apsb20-35.htmlcve.mitre.org10/27/2020accepted70
1020234806/26/2020VulD...cve_nvd_summaryAdobe After Effects versions 17.1 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution .mitre.org06/26/2020accepted100
1020234706/26/2020VulD...cve_assigned1583107200mitre.org06/26/2020accepted100
1020233806/26/2020VulD...cvss3_nvd_aHnist.gov06/26/2020accepted100
1020233706/26/2020VulD...cvss3_nvd_iHnist.gov06/26/2020accepted100
1020233606/26/2020VulD...cvss3_nvd_cHnist.gov06/26/2020accepted100
1020233506/26/2020VulD...cvss3_nvd_sUnist.gov06/26/2020accepted100
1020233406/26/2020VulD...cvss3_nvd_uiRnist.gov06/26/2020accepted100
1020233306/26/2020VulD...cvss3_nvd_prNnist.gov06/26/2020accepted100
1020233206/26/2020VulD...cvss3_nvd_acLnist.gov06/26/2020accepted100
1020233106/26/2020VulD...cvss3_nvd_avLnist.gov06/26/2020accepted100
1020231806/26/2020VulD...cvss2_nvd_aiCnist.gov06/26/2020accepted100
1020231706/26/2020VulD...cvss2_nvd_iiCnist.gov06/26/2020accepted100
1020231606/26/2020VulD...cvss2_nvd_ciCnist.gov06/26/2020accepted100
1020231506/26/2020VulD...cvss2_nvd_auNnist.gov06/26/2020accepted100
1020231406/26/2020VulD...cvss2_nvd_acMnist.gov06/26/2020accepted100
1020231306/26/2020VulD...cvss2_nvd_avNnist.gov06/26/2020accepted100
1020230306/26/2020VulD...cwe787 (memory corruption)06/26/2020accepted100
1020235606/26/2020VulD...cvss3_nvd_basescore7.8nist.gov06/26/2020accepted90
1020235506/26/2020VulD...cvss3_vuldb_rcC06/26/2020accepted90

Interested in the pricing of exploits?

See the underground prices here!