Lucene search
HistoryFeb 16, 2022 - 5:15 p.m.
CVE-2022-23200
adobe
after effects
cve-2022-23200
vulnerability
arbitrary code execution
user interaction
nvd
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
22.8%
Adobe After Effects versions 22.1.1 (and earlier) and 18.4.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | after_effects | * | cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:* |
| adobe | after_effects | * | cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:* |
Related
zdi
zdi
cvelist
cvelist
cnvd
cnvd
Adobe After Effects out-of-bounds write vulnerability (CNVD-2022-15926)
2022-02-18 00:00:00
nessus
nessus
prion
prion
Cross site scripting
2022-02-16 17:15:00
adobe
adobe
APSB22-09 : Security update available for Adobe After Effects
2022-02-08 00:00:00
malwarebytes
malwarebytes
Update now! Firefox and Adobe updates are more critical than Microsoft’s
2022-02-09 12:10:20
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
22.8%
Related for CVE-2022-23200