Design/Logic Flaw

Adobe Media Encoder version 14.3.2 and earlier versions has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to...

CVE-2020-9745 Adobe Media Encoder PSD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder version 14.3.2 and earlier versions has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to...

CVE-2020-9745

Adobe Media Encoder 14.3.2 and earlier is affected by an out-of-bounds read vulnerability in PSD file parsing that could allow reading past memory, potentially causing a crash or disclosure of information. Exploitation requires user interaction (visiting a malicious page or opening a malicious fi...

CVE-2020-9744 Adobe Media Encoder WMV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder version 14.3.2 and earlier versions has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to...

CVE-2020-9744

Adobe Media Encoder 14.3.2 and earlier are affected by CVE-2020-9744, an out-of-bounds read that could crash or disclose memory contents. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The issue is addressed in Adobe’s APSB20-57 advisory; update to...

CVE-2020-9739 Adobe Media Encoder FLV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder version 14.3.2 and earlier versions has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to...

CVE-2020-9739

Adobe Media Encoder versions 14.3.2 and earlier are affected by CVE-2020-9739, an out-of-bounds read in FLV file parsing that can crash the app or disclose memory contents. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). Remediation per APSB20-57 is...

CVE-2020-0329

In the OMX encoder, there is a possible out of bounds read due to invalid input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-63522940...

CVE-2020-0329

In the OMX encoder, there is a possible out of bounds read due to invalid input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-63522940...

Out-of-bounds

In the OMX encoder, there is a possible out of bounds read due to invalid input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-63522940...

CVE-2020-0329

In the OMX encoder, there is a possible out of bounds read due to invalid input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-63522940...

CVE-2020-0329

CVE-2020-0329 affects the OMX encoder in Android 11. The root cause is an out-of-bounds read caused by invalid input validation, enabling local information disclosure without user interaction or additional privileges. The issue is documented in the Android 11 security release notes and related ad...

Adobe Releases Security Update for Media Encoder

Adobe has released a security update to address vulnerabilities in Media Encoder. An attacker could exploit these vulnerabilities to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the Adobe Security Bulletin an...

APSB20-57 Security update available for Adobe Media Encoder

Adobe has released an update for Adobe Media Encoder. This update resolves important out-of-bounds read vulnerabilities that could lead to information disclosure in the context of the current user...

IPTV encoder devices contain multiple vulnerabilities

Overview Multiple vulnerabilities exist in various Video Over IP Internet Protocol encoder devices, also known as IPTV/H.264/H.265 video encoders. These vulnerabilities allow an unauthenticated remote attacker to execute arbitrary code and perform other unauthorized actions on a vulnerable system...

astc-encoder:astc_encode_decode_ise_fuzzer: Index-out-of-bounds in encode_ise

Project: https://github.com/ARM-software/astc-encoder.git Detailed Report: https://oss-fuzz.com/testcase?key=6292768555794432 Project: astc-encoder Fuzzing Engine: libFuzzer Fuzz Target: astcencodedecodeisefuzzer Job Type: libfuzzerubsanastc-encoder Platform Id: linux Crash Type:...

astc-encoder:astc_encode_decode_ise_fuzzer: Heap-buffer-overflow in read_bits

Project: https://github.com/ARM-software/astc-encoder.git Detailed Report: https://oss-fuzz.com/testcase?key=5682067692847104 Project: astc-encoder Fuzzing Engine: libFuzzer Fuzz Target: astcencodedecodeisefuzzer Job Type: libfuzzerasanastc-encoder Platform Id: linux Crash Type:...

Critical Adobe Flaws Allow Attackers to Run JavaScript in Browsers

UPDATE Adobe has released fixes addressing five critical flaws in its popular Experience Manager content-management solution for building websites, mobile apps and forms. The cross-site scripting XSS flaws could allow attackers to execute JavaScript in targets’ browsers. Including Adobe Experienc...

Hack-Tools - The All-In-One Red Team Extension For Web Pentester

The all-in-oneRed Team browser extension for Web Pentesters HackTools, is a web extension facilitating your web application penetration tests , it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverse shells and much more. With the extension you no longer...

Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer

In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox 78...