Adobe Releases Multiple Security Updates

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessa...

Adobe Media Encoder Memory Out-of-Bounds Access Vulnerability (CNVD-2021-74111)

Adobe Media Encoder is a video and audio encoding application. A memory out-of-bounds access vulnerability exists in Adobe Media Encoder 15.4 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code...

The vulnerability of the Adobe Media Encoder application, related to reading beyond the buffer in memory, allows an attacker to disclose protected information.

The vulnerability of the Adobe Media Encoder application relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

PT-2021-4668 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Adobe Media Encoder versions 15.1 and earlier Description: The issue is related to improper memory access when parsing a crafted .SVG file, which could allow an attacker to execute code in the context of the current user. Exploitation require...

Adobe Media Encoder 缓冲区错误漏洞

Adobe Media Encoder is a video and audio encoding application. A memory out-of-bounds access vulnerability exists in Adobe Media Encoder 15.4 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code...

APSB21-70 Security update available for Adobe Media Encoder

Adobe has released an update for Adobe Media Encoder. This update resolves a critical vulnerability that could lead to arbitrary code execution in the context of the current user...

DEBIAN-CVE-2020-21677

A heap-based buffer overflow in the sixelencoderoutputwithoutmacro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service DOS via converting a crafted PNG file into Sixel format...

UBUNTU-CVE-2020-21677

A heap-based buffer overflow in the sixelencoderoutputwithoutmacro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service DOS via converting a crafted PNG file into Sixel format...

CVE-2020-21677

A heap-based buffer overflow in the sixelencoderoutputwithoutmacro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service DOS via converting a crafted PNG file into Sixel format...

[SECURITY] Fedora 34 Update: rust-rav1e-0.4.1-4.fc34

Fastest and safest AV1 encoder...

EulerOS 2.0 SP9 : openjpeg2 (EulerOS-SA-2021-2276)

According to the versions of the openjpeg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in OpenJPEG's encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during...

Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2021-2250)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Adobe Media Encoder application, related to reading beyond the buffer in memory, allows an attacker to disclose protected information.

The vulnerability of the Adobe Media Encoder application relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

Email Encoder < 2.1.2 - Reflected Cross Site Scripting

The plugin has an endpoint that requires no authentication and will render a user supplied value in the HTML response without escaping or sanitizing the data. The vulnerable function is nonce protected, the nonce can be found in the site's HTML source by searching for the javascript variable...

Email Encoder < 2.1.2 - Reflected Cross Site Scripting

The plugin has an endpoint that requires no authentication and will render a user supplied value in the HTML response without escaping or sanitizing the data. PoC The vulnerable function is nonce protected, the nonce can be found in the site's HTML source by searching for the javascript variable...

Adobe Media Encoder FLV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Adobe Media Encoder MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Geutebrück G-Cam E2 和 G-Code 缓冲区错误漏洞

Geutebrück G-Cam E2 is a camera from manualslib.Geutebrück G-Code is an analog video encoder module from Geutebrück, Germany. A buffer error vulnerability exists in the Geutebrück G-Cam E2 and G-Code that stems from a stack-based buffer overflow in the counter parameter. This could allow an...

Adobe Media Encoder < 15.4 Multiple Vulnerabilities (APSB21-43)

The version of Adobe Media Encoder installed on the remote Windows host is prior to 15.4. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-43 advisory. - Adobe Media Encoder version 15.2 and earlier is affected by a memory corruption vulnerability when parsing a...

libheif Denial of Service Vulnerability (CNVD-2022-06517)

libheif is an ISO/IEC 23008-12:2017 HEIF file format decoder and encoder. libheif version 1.4.0 suffers from a denial-of-service vulnerability. The vulnerability stems from a floating-point exception in the Fraction function. An attacker could exploit this vulnerability to cause a denial of servi...