Lucene search

AdobeAPSB24-55

HistorySep 10, 2024 - 12:00 a.m.

APSB24-55 : Security update available for Adobe After Effects

2024-09-1000:00:00

helpx.adobe.com

adobe

after effects

security

update

windows

macos

vulnerabilities

exploitation

arbitrary code execution

memory leak

file system write

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

43.0%

JSON

Adobe has released an update for Adobe After Effects for Windows and macOS. This update addresses critical, important and moderate security vulnerabilities. Successful exploitation could lead to arbitrary code execution, memory leak and arbitrary file system write in the context of the current user.

Affected configurations

Vulners

Node

adobeafter_effectsRange≤24.5

adobeafter_effectsRange≤23.6.6

VendorProductVersionCPE
adobeafter_effects*cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	after_effects	*	cpe:2.3:a:adobe:after_effects::::::::

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

43.0%

JSON

Related for APSB24-55