Lucene search
AdobeCVELIST:CVE-2021-40764HistoryMar 16, 2022 - 2:02 p.m.
CVE-2021-40764 Adobe Character Animator Memory Corruption could lead to Arbitrary code execution
2022-03-1614:02:51
CWE-788
adobe
www.cve.org
5
adobe
character animator
memory corruption
cve-2021-40764
arbitrary code execution
m4a file
user interaction
vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
39.9%
Adobe Character Animator version 4.4 (and earlier) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
CNA Affected
[
{
"product": "Character Animator (Preview 4)",
"vendor": "Adobe",
"versions": [
{
"lessThanOrEqual": "4.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThanOrEqual": "None",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Memory corruption
2022-03-16 15:15:00
cnvd
cnvd
Adobe Character Animator 2021 memory corruption vulnerability
2021-10-27 00:00:00
cve
cve
CVE-2021-40764
2022-03-16 15:15:13
nvd
nvd
CVE-2021-40764
2022-03-16 15:15:13
adobe
adobe
APSB21-95 : Security update available for Adobe Character Animator
2021-10-26 00:00:00
nessus
nessus
Adobe Character Animator < 4.4.2 Multiple Vulnerabilities (APSB21-95)
2021-10-29 00:00:00
threatpost
threatpost
Adobe's Surprise Security Bulletin Dominated by Critical Patches
2021-10-27 19:13:47
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
39.9%
Related for CVELIST:CVE-2021-40764