42 matches found
CVE-2021-40740
Adobe Audition 14.4 and earlier are affected by a memory corruption vulnerability in M4A file parsing that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction. The issue is documented as CVE-2021-40740 and is addressed in APSB21-92 with ...
CVE-2021-40738
Adobe Audition 14.4 and earlier are affected by a memory corruption vulnerability when parsing WAV files, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction and is reported locally via CVE-2021-40738. Remediation: update to Ado...
CVE-2021-40736
Adobe Audition has a memory corruption vulnerability (CVE-2021-40736) in version 14.4 and earlier that could allow arbitrary code execution in the current user’s context. Exploitation requires user interaction. Mitigation: apply the APSB21-92 patch update to 14.4.2 on Windows/macOS as indicated b...
CVE-2021-40737
CVE-2021-40737 affects Adobe Audition 14.4 and earlier. It is a null‑pointer dereference during parsing of a specially crafted file, enabling a denial-of-service in the context of the current user; exploitation requires user interaction (open a malicious file). A fix is available: update to Adobe...
CVE-2021-40735
CVE-2021-40735 affects Adobe Audition 14.4 and earlier with a memory corruption vulnerability that can lead to arbitrary code execution in the context of the current user. Affected platforms include Windows and macOS; exploitation requires user interaction. Adobe's APSB21-92 advisory documents a ...
CVE-2021-40734
Adobe Audition 14.4 and earlier is affected by a memory corruption vulnerability when parsing SVG files, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction. Affected product: Adobe Audition (Windows/macOS). Root cause: memory c...
CVE-2021-40739
Adobe Audition 14.4 and earlier is affected by a memory corruption vulnerability when parsing M4A files, potentially allowing arbitrary code execution in the context of the current user. The issue requires user interaction to exploit. The vulnerability is addressed by the APSB21-92 patch (Auditio...
CVE-2021-40742
CVE-2021-40742 affects Adobe Audition 14.4 and earlier. It is a null pointer dereference when parsing a specially crafted file, potentially causing application denial-of-service. Exploitation requires user interaction (victim opens a malicious file). A patch is available in the APSB21-92 advisory...
CVE-2021-40741
CVE-2021-40741 affects Adobe Audition 14.4 and earlier. The issue is a memory/buffer access vulnerability (memory corruption/out-of-bounds) that occurs when parsing a specially crafted file, enabling a denial-of-service in the context of the current user. Exploitation requires user interaction (v...
CVE-2024-49536
Audition (Adobe) versions 23.6.9, 24.4.6 and earlier are affected by an out-of-bounds read vulnerability that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Affected product/versions are detailed in multiple sources, including CVE-2024...
CVE-2021-36003
CVE-2021-36003 affects Adobe Audition 14.2 and earlier, where an out-of-bounds read occurs while parsing a specially crafted file. An unauthenticated attacker could disclose arbitrary memory information within the user’s context; exploitation requires that the victim open a malicious file (user i...
CVE-2020-9658
CVE-2020-9658 affects Adobe Audition 13.0.6 and earlier. Root cause: an out-of-bounds write vulnerability that could allow arbitrary code execution on exploit. Impact is consistent with the advisory and CVE details; patched in Adobe APSB20-40 to version 13.0.7 for Windows/macOS. Other records ref...
CVE-2011-0615
CVE-2011-0615 AffectSP Adobe Audition prior to CS5.5 is vulnerable to multiple stack/heap buffer overflows while parsing TRKM fields in Session (.ses) files. Root cause: mis-handling of size in TRKM chunk leads to memory corruption and potential remote code execution or crash. Affected: Adobe Aud...
CVE-2023-47046
Adobe Audition versions 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds write vulnerability that could let an attacker achieve arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction). Mi...
CVE-2023-47048
Adobe Audition 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which can lead to code execution with the caller’s privileges. The root cause is an out-of-bounds read in the file parsing process that can be triggered by a...
CVE-2024-20739
Adobe Audition is affected by a heap-based buffer overflow in AVI file parsing (CVE-2024-20739) that can lead to arbitrary code execution in the context of the current user. Affected versions per records include Audition 24.0.3, 23.6.2 and earlier. Exploitation requires user interaction (victim m...
CVE-2024-30276
CVE-2024-30276 – Adobe Audition is affected in versions 24.2, 23.6.4 and earlier by an out-of-bounds read that can disclose sensitive memory and bypass ASLR. Exploitation requires user interaction as a victim must open a malicious file. Several connected sources confirm the issue and cite the sam...
CVE-2024-30285
Adobe Audition is affected by CVE-2024-30285 due to a NULL Pointer Dereference that can crash the application and cause a denial-of-service. Affected products: Audition 24.2, 23.6.4 and earlier. Exploitation requires user interaction (victim opens a malicious file). Impact is an application crash...
CVE-2021-44698
CVE-2021-44698 refers to an out-of-bounds read in Adobe Audition’s MP4 file parsing that could disclose memory and bypass ASLR. Affected: Audition 14.4 (and earlier) and 22.0 (and earlier). Exploitation requires user interaction (victim opens a malicious MP4 file). The issue is documented across ...
CVE-2023-47053
Adobe Audition is affected by CVE-2023-47053: an Access of Uninitialized Pointer vulnerability in version 24.0 and earlier and 23.6.1 and earlier, leading to sensitive memory disclosure (ASLR bypass possible). Exploitation requires user interaction (open a malicious file). Adobe’s APSB23-64 advis...
CVE-2024-39378
Adobe Audition is affected by CVE-2024-39378: an out-of-bounds write (CWE-787) in AVI parsing that can lead to arbitrary code execution in the context of the current user. Affected versions are 24.4.1, 23.6.6 and earlier. Exploitation requires user interaction (opening a malicious file). The issu...
CVE-2024-47449
CVE-2024-47449 – Adobe Audition : An out-of-bounds read vulnerability affects Audition versions 23.6.9, 24.4.6 and earlier, enabling potential disclosure of sensitive memory and bypass of mitigations such as ASLR. Exploitation requires a user to open a malicious file, i.e., a user interaction vec...
CVE-2020-9618
Adobe Audition is affected by CVE-2020-9618: an out-of-bounds read in versions 13.0.5 and earlier that could disclose information. The issue stems from improper validation during MOV file parsing and is addressed in the APSB20-28 patch, Adobe Audition 13.0.6 for Windows/macOS. In vendor advisorie...
CVE-2020-9659
Adobe Audition is affected by CVE-2020-9659 up to version 13.0.6, where an out-of-bounds write could enable arbitrary code execution. The issue is documented under Adobe’s APSB20-40 advisory and was fixed in version 13.0.7. This vulnerability is local in scope with high impact (arbitrary code exe...
CVE-2021-44699
Adobe Audition versions 14.4 and earlier, and 22.0 and earlier, are affected by an out-of-bounds read in MP4 parsing that can disclose memory and bypass ASLR. Exploitation requires user interaction (opening a malicious MP4). References in connected docs point to a patch in APSB21-121; updated bui...
CVE-2023-47047
CVE-2023-47047 affects Adobe Audition 24.0 and earlier, and 23.6.1 and earlier. The root cause is an access of an uninitialized pointer, potentially enabling arbitrary code execution in the current user context. Exploitation requires user interaction: a victim must open a malicious file. Impact i...
CVE-2023-47054
Summary: CVE-2023-47054 affects Adobe Audition 24.0 and earlier, and 23.6.1 and earlier, due to an Access of Uninitialized Pointer vulnerability that can disclose memory and bypass ASLR. Exploitation is user-interaction dependent (victim opens a malicious file). Related connected reports describe...
CVE-2023-47050
Adobe Audition is affected by CVE-2023-47050: an out-of-bounds read when parsing a crafted file, enabling code execution in the user’s context. Affected versions: 24.0 and earlier, and 23.6.1 and earlier. Exploitation requires user interaction (opening a malicious file). Affected platforms includ...
CVE-2024-41868
CVE-2024-41868 affects Adobe Audition: out-of-bounds read (CWE-125) in versions 24.4.1, 23.6.6 and earlier, potentially leading to disclosure of sensitive memory and enabling bypass of mitigations such as ASLR. Exploitation requires user interaction (victim opens a malicious file). Connected sour...
CVE-2021-44697
Adobe Audition versions 14.4 and 22.0 (and earlier) are affected by an out-of-bounds read vulnerability that could disclose sensitive memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious MOV file). Connected sources confirm CVE-2021-44697 and reference Adobe AP...
CVE-2023-47049
Adobe Audition 24.0 and earlier, and 23.6.1 and earlier, are affected by an out-of-bounds read when parsing crafted MP4/file content, enabling potential remote code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Connected sour...
CVE-2023-47051
CVE-2023-47051 concerns Adobe Audition versions prior to 23.6.2 and 24.0.3 (i.e., 24.0 and earlier; 23.6.1 and earlier) and describes a heap-based buffer overflow that could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (victim must open a malicious ...
CVE-2011-0614
Adobe Audition 3.0.1 and earlier are affected by CVE-2011-0614 due to a session file (.ses) processing stack/buffer overflow. The vulnerability arises when handling SES files, allowing remote attackers to cause memory corruption and application crash, with potential arbitrary code execution. Publ...
CVE-2010-5258
Adobe Audition 3.0 build 7283.0 is affected by an untrusted search path vulnerability that enables local privilege elevation via a Trojan horse Assist.Dll loaded from the current working directory, demonstrated by a directory containing a .ses file. This is observed across multiple sources (NVD, ...
CVE-2023-47052
Adobe Audition 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds read during MP4 file parsing that can disclose memory and, per the CVE-2023-47052 entry, bypass mitigations such as ASLR. Exploitation requires user interaction (opening a malicious file). This CVE is one ...
CVE-2025-43580
Adobe Audition is affected by CVE-2025-43580 (Access of Memory Location After End of Buffer) in versions 25.2, 24.6.3 and earlier, potentially allowing a denial-of-service. The issue requires a user to open a malicious file. Connected sources confirm the affected versions and the vulnerability cl...
CVE-2026-21316
CVE-2026-21316 affects Audition versions 25.3 and earlier with an Access of Memory Location After End of Buffer that could cause denial‑of‑service. Exploitation requires user interaction: a victim must open a malicious file. CVSS 3.1: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H; base score 5.5 (Medium).
CVE-2026-21315
Audition versions 25.3 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure, allowing access to sensitive information stored in memory. Exploitation requires user interaction: a victim must open a malicious file. CVSS: 3.1, base score 5.5 (Medium), co...
CVE-2026-21317
Audition versions 25.3 and earlier are affected by an out-of-bounds read that could disclose memory contents. The issue requires a user to open a malicious file to exploit. Impact is memory exposure with Confidentiality impact: HIGH; other impacts: none per provided metrics. No remediation detail...
CVE-2026-21314
Audition versions 25.3 and earlier are affected by an out-of-bounds read that can expose memory. The vulnerability could allow disclosure of sensitive memory contents. Exploitation requires that the victim opens a malicious file , i.e., user interaction is needed. This CVE has a CVSS v3.1 base sc...
CVE-2026-21313
Audition 25.3 and earlier are affected by an out-of-bounds read that can expose memory. An attacker could disclose sensitive memory contents after the victim opens a malicious file. CVSS 3.1: 5.5 (MEDIUM); attack vector LOCAL, user interaction required. No remediation details are provided in the ...
CVE-2026-21312
CVE-2026-21312 affects Audition versions 25.3 and earlier. It describes an out-of-bounds write vulnerability that could lead to arbitrary code execution in the current user context. Exploitation requires user interaction, as a victim must open a malicious file. The CVSS 3.1 vector indicates local...