Lucene search
K
AdobeAudition

42 matches found

CVE
CVE
added 2022/03/16 2:3 p.m.173 views

CVE-2021-40740

Adobe Audition 14.4 and earlier are affected by a memory corruption vulnerability in M4A file parsing that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction. The issue is documented as CVE-2021-40740 and is addressed in APSB21-92 with ...

9.3CVSS7.9AI score0.01645EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.154 views

CVE-2021-40738

Adobe Audition 14.4 and earlier are affected by a memory corruption vulnerability when parsing WAV files, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction and is reported locally via CVE-2021-40738. Remediation: update to Ado...

9.3CVSS7.9AI score0.01645EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.140 views

CVE-2021-40736

Adobe Audition has a memory corruption vulnerability (CVE-2021-40736) in version 14.4 and earlier that could allow arbitrary code execution in the current user’s context. Exploitation requires user interaction. Mitigation: apply the APSB21-92 patch update to 14.4.2 on Windows/macOS as indicated b...

9.3CVSS7.9AI score0.01706EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.136 views

CVE-2021-40737

CVE-2021-40737 affects Adobe Audition 14.4 and earlier. It is a null‑pointer dereference during parsing of a specially crafted file, enabling a denial-of-service in the context of the current user; exploitation requires user interaction (open a malicious file). A fix is available: update to Adobe...

5.5CVSS5.4AI score0.01209EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.131 views

CVE-2021-40735

CVE-2021-40735 affects Adobe Audition 14.4 and earlier with a memory corruption vulnerability that can lead to arbitrary code execution in the context of the current user. Affected platforms include Windows and macOS; exploitation requires user interaction. Adobe's APSB21-92 advisory documents a ...

9.3CVSS7.9AI score0.01706EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.121 views

CVE-2021-40734

Adobe Audition 14.4 and earlier is affected by a memory corruption vulnerability when parsing SVG files, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction. Affected product: Adobe Audition (Windows/macOS). Root cause: memory c...

9.3CVSS7.9AI score0.01588EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.119 views

CVE-2021-40739

Adobe Audition 14.4 and earlier is affected by a memory corruption vulnerability when parsing M4A files, potentially allowing arbitrary code execution in the context of the current user. The issue requires user interaction to exploit. The vulnerability is addressed by the APSB21-92 patch (Auditio...

9.3CVSS7.9AI score0.01645EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.113 views

CVE-2021-40742

CVE-2021-40742 affects Adobe Audition 14.4 and earlier. It is a null pointer dereference when parsing a specially crafted file, potentially causing application denial-of-service. Exploitation requires user interaction (victim opens a malicious file). A patch is available in the APSB21-92 advisory...

5.5CVSS5.4AI score0.01209EPSS
CVE
CVE
added 2022/03/16 2:3 p.m.110 views

CVE-2021-40741

CVE-2021-40741 affects Adobe Audition 14.4 and earlier. The issue is a memory/buffer access vulnerability (memory corruption/out-of-bounds) that occurs when parsing a specially crafted file, enabling a denial-of-service in the context of the current user. Exploitation requires user interaction (v...

5.5CVSS5.4AI score0.0122EPSS
CVE
CVE
added 2024/11/15 7:38 p.m.95 views

CVE-2024-49536

Audition (Adobe) versions 23.6.9, 24.4.6 and earlier are affected by an out-of-bounds read vulnerability that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Affected product/versions are detailed in multiple sources, including CVE-2024...

5.5CVSS5.1AI score0.00235EPSS
CVE
CVE
added 2021/11/19 4:0 p.m.76 views

CVE-2021-36003

CVE-2021-36003 affects Adobe Audition 14.2 and earlier, where an out-of-bounds read occurs while parsing a specially crafted file. An unauthenticated attacker could disclose arbitrary memory information within the user’s context; exploitation requires that the victim open a malicious file (user i...

5.5CVSS5AI score0.01903EPSS
CVE
CVE
added 2020/06/25 9:9 p.m.71 views

CVE-2020-9658

CVE-2020-9658 affects Adobe Audition 13.0.6 and earlier. Root cause: an out-of-bounds write vulnerability that could allow arbitrary code execution on exploit. Impact is consistent with the advisory and CVE details; patched in Adobe APSB20-40 to version 13.0.7 for Windows/macOS. Other records ref...

9.3CVSS7.8AI score0.0309EPSS
CVE
CVE
added 2011/05/16 5:0 p.m.70 views

CVE-2011-0615

CVE-2011-0615 AffectSP Adobe Audition prior to CS5.5 is vulnerable to multiple stack/heap buffer overflows while parsing TRKM fields in Session (.ses) files. Root cause: mis-handling of size in TRKM chunk leads to memory corruption and potential remote code execution or crash. Affected: Adobe Aud...

9.3CVSS8.1AI score0.06962EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.69 views

CVE-2023-47046

Adobe Audition versions 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds write vulnerability that could let an attacker achieve arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction). Mi...

7.8CVSS6.1AI score0.00318EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.69 views

CVE-2023-47048

Adobe Audition 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which can lead to code execution with the caller’s privileges. The root cause is an out-of-bounds read in the file parsing process that can be triggered by a...

7.8CVSS5.7AI score0.00352EPSS
CVE
CVE
added 2024/02/15 12:26 p.m.68 views

CVE-2024-20739

Adobe Audition is affected by a heap-based buffer overflow in AVI file parsing (CVE-2024-20739) that can lead to arbitrary code execution in the context of the current user. Affected versions per records include Audition 24.0.3, 23.6.2 and earlier. Exploitation requires user interaction (victim m...

7.8CVSS7.7AI score0.00612EPSS
CVE
CVE
added 2024/06/13 8:24 a.m.67 views

CVE-2024-30276

CVE-2024-30276 – Adobe Audition is affected in versions 24.2, 23.6.4 and earlier by an out-of-bounds read that can disclose sensitive memory and bypass ASLR. Exploitation requires user interaction as a victim must open a malicious file. Several connected sources confirm the issue and cite the sam...

5.5CVSS5AI score0.00486EPSS
CVE
CVE
added 2024/06/13 8:24 a.m.66 views

CVE-2024-30285

Adobe Audition is affected by CVE-2024-30285 due to a NULL Pointer Dereference that can crash the application and cause a denial-of-service. Affected products: Audition 24.2, 23.6.4 and earlier. Exploitation requires user interaction (victim opens a malicious file). Impact is an application crash...

5.5CVSS5.2AI score0.00382EPSS
CVE
CVE
added 2021/12/20 8:8 p.m.60 views

CVE-2021-44698

CVE-2021-44698 refers to an out-of-bounds read in Adobe Audition’s MP4 file parsing that could disclose memory and bypass ASLR. Affected: Audition 14.4 (and earlier) and 22.0 (and earlier). Exploitation requires user interaction (victim opens a malicious MP4 file). The issue is documented across ...

4.3CVSS3.1AI score0.01802EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.60 views

CVE-2023-47047

CVE-2023-47047 affects Adobe Audition 24.0 and earlier, and 23.6.1 and earlier. The root cause is an access of an uninitialized pointer, potentially enabling arbitrary code execution in the current user context. Exploitation requires user interaction: a victim must open a malicious file. Impact i...

7.8CVSS6.6AI score0.00339EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.60 views

CVE-2023-47053

Adobe Audition is affected by CVE-2023-47053: an Access of Uninitialized Pointer vulnerability in version 24.0 and earlier and 23.6.1 and earlier, leading to sensitive memory disclosure (ASLR bypass possible). Exploitation requires user interaction (open a malicious file). Adobe’s APSB23-64 advis...

5.5CVSS5.2AI score0.00358EPSS
CVE
CVE
added 2024/09/11 4:7 p.m.60 views

CVE-2024-39378

Adobe Audition is affected by CVE-2024-39378: an out-of-bounds write (CWE-787) in AVI parsing that can lead to arbitrary code execution in the context of the current user. Affected versions are 24.4.1, 23.6.6 and earlier. Exploitation requires user interaction (opening a malicious file). The issu...

7.8CVSS7.8AI score0.00249EPSS
CVE
CVE
added 2024/11/12 6:9 p.m.60 views

CVE-2024-47449

CVE-2024-47449 – Adobe Audition : An out-of-bounds read vulnerability affects Audition versions 23.6.9, 24.4.6 and earlier, enabling potential disclosure of sensitive memory and bypass of mitigations such as ASLR. Exploitation requires a user to open a malicious file, i.e., a user interaction vec...

5.5CVSS5.1AI score0.0022EPSS
CVE
CVE
added 2020/06/25 9:21 p.m.59 views

CVE-2020-9618

Adobe Audition is affected by CVE-2020-9618: an out-of-bounds read in versions 13.0.5 and earlier that could disclose information. The issue stems from improper validation during MOV file parsing and is addressed in the APSB20-28 patch, Adobe Audition 13.0.6 for Windows/macOS. In vendor advisorie...

5.5CVSS4.9AI score0.02873EPSS
CVE
CVE
added 2020/06/25 9:9 p.m.59 views

CVE-2020-9659

Adobe Audition is affected by CVE-2020-9659 up to version 13.0.6, where an out-of-bounds write could enable arbitrary code execution. The issue is documented under Adobe’s APSB20-40 advisory and was fixed in version 13.0.7. This vulnerability is local in scope with high impact (arbitrary code exe...

9.3CVSS7.8AI score0.03311EPSS
CVE
CVE
added 2021/12/20 8:8 p.m.59 views

CVE-2021-44699

Adobe Audition versions 14.4 and earlier, and 22.0 and earlier, are affected by an out-of-bounds read in MP4 parsing that can disclose memory and bypass ASLR. Exploitation requires user interaction (opening a malicious MP4). References in connected docs point to a patch in APSB21-121; updated bui...

4.3CVSS3.1AI score0.01802EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.58 views

CVE-2023-47054

Summary: CVE-2023-47054 affects Adobe Audition 24.0 and earlier, and 23.6.1 and earlier, due to an Access of Uninitialized Pointer vulnerability that can disclose memory and bypass ASLR. Exploitation is user-interaction dependent (victim opens a malicious file). Related connected reports describe...

5.5CVSS4.3AI score0.00358EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.57 views

CVE-2023-47050

Adobe Audition is affected by CVE-2023-47050: an out-of-bounds read when parsing a crafted file, enabling code execution in the user’s context. Affected versions: 24.0 and earlier, and 23.6.1 and earlier. Exploitation requires user interaction (opening a malicious file). Affected platforms includ...

7.8CVSS5.7AI score0.00352EPSS
CVE
CVE
added 2024/09/11 4:7 p.m.57 views

CVE-2024-41868

CVE-2024-41868 affects Adobe Audition: out-of-bounds read (CWE-125) in versions 24.4.1, 23.6.6 and earlier, potentially leading to disclosure of sensitive memory and enabling bypass of mitigations such as ASLR. Exploitation requires user interaction (victim opens a malicious file). Connected sour...

5.5CVSS5.3AI score0.00245EPSS
CVE
CVE
added 2021/12/20 8:8 p.m.56 views

CVE-2021-44697

Adobe Audition versions 14.4 and 22.0 (and earlier) are affected by an out-of-bounds read vulnerability that could disclose sensitive memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious MOV file). Connected sources confirm CVE-2021-44697 and reference Adobe AP...

4.3CVSS3.1AI score0.01802EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.56 views

CVE-2023-47049

Adobe Audition 24.0 and earlier, and 23.6.1 and earlier, are affected by an out-of-bounds read when parsing crafted MP4/file content, enabling potential remote code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Connected sour...

7.8CVSS5.7AI score0.00352EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.56 views

CVE-2023-47051

CVE-2023-47051 concerns Adobe Audition versions prior to 23.6.2 and 24.0.3 (i.e., 24.0 and earlier; 23.6.1 and earlier) and describes a heap-based buffer overflow that could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (victim must open a malicious ...

7.8CVSS6.1AI score0.0038EPSS
CVE
CVE
added 2011/05/16 5:0 p.m.52 views

CVE-2011-0614

Adobe Audition 3.0.1 and earlier are affected by CVE-2011-0614 due to a session file (.ses) processing stack/buffer overflow. The vulnerability arises when handling SES files, allowing remote attackers to cause memory corruption and application crash, with potential arbitrary code execution. Publ...

9.3CVSS8.2AI score0.13711EPSS
CVE
CVE
added 2023/11/16 3:39 p.m.52 views

CVE-2023-47052

Adobe Audition 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds read during MP4 file parsing that can disclose memory and, per the CVE-2023-47052 entry, bypass mitigations such as ASLR. Exploitation requires user interaction (opening a malicious file). This CVE is one ...

5.5CVSS5.2AI score0.00358EPSS
CVE
CVE
added 2012/09/07 10:0 a.m.51 views

CVE-2010-5258

Adobe Audition 3.0 build 7283.0 is affected by an untrusted search path vulnerability that enables local privilege elevation via a Trojan horse Assist.Dll loaded from the current working directory, demonstrated by a directory containing a .ses file. This is observed across multiple sources (NVD, ...

6.9CVSS6.6AI score0.00884EPSS
CVE
CVE
added 2025/07/08 4:30 p.m.32 views

CVE-2025-43580

Adobe Audition is affected by CVE-2025-43580 (Access of Memory Location After End of Buffer) in versions 25.2, 24.6.3 and earlier, potentially allowing a denial-of-service. The issue requires a user to open a malicious file. Connected sources confirm the affected versions and the vulnerability cl...

5.5CVSS6.1AI score0.00213EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.30 views

CVE-2026-21316

CVE-2026-21316 affects Audition versions 25.3 and earlier with an Access of Memory Location After End of Buffer that could cause denial‑of‑service. Exploitation requires user interaction: a victim must open a malicious file. CVSS 3.1: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H; base score 5.5 (Medium).

5.5CVSS5.6AI score0.0014EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.20 views

CVE-2026-21315

Audition versions 25.3 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure, allowing access to sensitive information stored in memory. Exploitation requires user interaction: a victim must open a malicious file. CVSS: 3.1, base score 5.5 (Medium), co...

5.5CVSS5.5AI score0.00153EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.19 views

CVE-2026-21317

Audition versions 25.3 and earlier are affected by an out-of-bounds read that could disclose memory contents. The issue requires a user to open a malicious file to exploit. Impact is memory exposure with Confidentiality impact: HIGH; other impacts: none per provided metrics. No remediation detail...

5.5CVSS5.4AI score0.00153EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.18 views

CVE-2026-21314

Audition versions 25.3 and earlier are affected by an out-of-bounds read that can expose memory. The vulnerability could allow disclosure of sensitive memory contents. Exploitation requires that the victim opens a malicious file , i.e., user interaction is needed. This CVE has a CVSS v3.1 base sc...

5.5CVSS5.4AI score0.00153EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.15 views

CVE-2026-21313

Audition 25.3 and earlier are affected by an out-of-bounds read that can expose memory. An attacker could disclose sensitive memory contents after the victim opens a malicious file. CVSS 3.1: 5.5 (MEDIUM); attack vector LOCAL, user interaction required. No remediation details are provided in the ...

5.5CVSS5.4AI score0.00153EPSS
CVE
CVE
added 2026/02/10 5:45 p.m.14 views

CVE-2026-21312

CVE-2026-21312 affects Audition versions 25.3 and earlier. It describes an out-of-bounds write vulnerability that could lead to arbitrary code execution in the current user context. Exploitation requires user interaction, as a victim must open a malicious file. The CVSS 3.1 vector indicates local...

7.8CVSS6.3AI score0.00184EPSS