PT-2025-15609 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Media Encoder versions 25.1, 24.6.4 and earlier Description: The issue is a Heap-based Buffer Overflow that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, whe...

Adobe Media Encoder Null Pointer Dereference Vulnerability (CNVD-2025-02146)

Adobe Media Encoder is an audio and video encoding application from the American company Audobee Adobe. A security vulnerability exists in Adobe Media Encoder version 25.0 and earlier and version 24.6.3 and earlier, which can be exploited by attackers to cause a denial of service...

Adobe Media Encoder Out-of-Bounds Write Vulnerability (CNVD-2025-02148)

Adobe Media Encoder is an audio and video encoding application from the American company Audobee Adobe. An out-of-bounds write vulnerability exists in Adobe Media Encoder versions 25.0 and earlier and 24.6.3 and earlier, which can be exploited by an attacker to execute arbitrary code in the curre...

CVE-2024-49554

Media Encoder versions 25.0, 24.6.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this iss...

CVE-2024-49553

CVE-2024-49553 affects Adobe Media Encoder 25.0, 24.6.3 and earlier with an out-of-bounds write that could execute code in the current user's context if a malicious file is opened. Connected sources confirm the issue and reference the APSB24-93 advisory; remediation is to update to the patched ve...

CVE-2024-49552 Media Encoder | Heap-based Buffer Overflow (CWE-122)

Media Encoder versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-50201

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix encoder-possibleclones Include the encoder itself in its possibleclones bitmask. In the past nothing validated that drivers were populating possibleclones correctly, but that changed in commit 74d2aacbe840 "drm:...

CVE-2023-47042

Adobe Media Encoder version 24.0.2 and earlier and 23.6 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

CVE-2021-43759 Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder versions 22.0, 15.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in th...

CVE-2021-43760 Adobe Media Encoder MOV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder versions 22.0, 15.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in th...

Out-of-bounds

In MP3 encoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed...

The vulnerability of Moxa VPORT 06EC-2V IP camera software and Moxa VPort 461A video encoder software lies in the reading of data beyond the buffer in memory. This allows an intruder to gain unauthorized access to protected information or cause a service failure.

The vulnerability of Moxa VPORT 06EC-2V microprogrammed software for IP cameras and the Moxa VPort 461A microprogrammed software for video encoders lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

The vulnerability of the AVEVideoEncoder component in iOS, tvOS, and iPadOS allows a hacker to execute arbitrary code.

The vulnerability of the AVEVideoEncoder component in iOS, tvOS, and iPadOS lies in the operation of recording data beyond the buffer limits in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

openjpeg: heap-buffer-overflow write in opj_tcd_dc_level_shift_encode()

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2021-28589 Adobe Media Encoder TS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder version 15.2 and earlier is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

DEBIAN-CVE-2020-27841

There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bounds read. The greatest impact from this flaw is to application availability...

Adobe Media Encoder Out-of-Bounds Read Vulnerability (CNVD-2020-44852)

Adobe Media Encoder is an audio and video encoding application from the American company Audobee Adobe. A security vulnerability exists in Adobe Media Encoder. An attacker could exploit the vulnerability to obtain sensitive information...

libvorbis: heap buffer overflow in mapping0_forward function

A heap-based buffer overflow was found in the encoder functionality of the libvorbis library. An attacker could create a malicious file to cause a denial of service, crashing the application containing the library...

[ASA-201706-20] thunderbird: multiple issues

Arch Linux Security Advisory ASA-201706-20 ========================================== Severity: Critical Date : 2017-06-16 CVE-ID : CVE-2017-5470 CVE-2017-5472 CVE-2017-7749 CVE-2017-7750 CVE-2017-7751 CVE-2017-7752 CVE-2017-7754 CVE-2017-7756 CVE-2017-7757 CVE-2017-7758 CVE-2017-7764 CVE-2017-77...

ImageMagick Studio ImageMagick Arbitrary File Move Vulnerability

ImageMagick Studio ImageMagick is the United States a set of open source image processing software. ImageMagick Studio A security vulnerability in ImageMagick's MSL encoder allows remote attackers to build malicious images, upload and move arbitrary files...