60 matches found
CVE-2021-40778
Adobe Media Encoder 15.4.1 and earlier are affected by a Null pointer dereference when parsing a specially crafted file, enabling an unauthenticated attacker to trigger an application denial-of-service in the context of the current user. Exploitation requires user interaction (victim opens a mali...
CVE-2021-40779
Adobe Media Encoder 15.4.1 and earlier is affected by a memory corruption vulnerability caused by insecure handling of a malicious file, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a crafted file). A fixed versi...
CVE-2021-40777
Adobe Media Encoder is affected in versions up to 15.4.1 and earlier by a memory corruption vulnerability caused by insecure handling of a malicious file. Exploitation requires user interaction (victim opens a malicious file) and can lead to arbitrary code execution in the context of the current ...
CVE-2021-40780
CVE-2021-40780 affects Adobe Media Encoder 15.4.1 and earlier. It is a memory corruption vulnerability caused by insecure handling of a malicious file, potentially allowing arbitrary code execution in the current user’s context. Exploitation requires user interaction (opening a crafted file). Mit...
CVE-2021-40781
CVE-2021-40781 affects Adobe Media Encoder 15.4.1 and earlier. The issue is a null pointer dereference while parsing a specially crafted file, enabling an unauthenticated attacker to cause a DoS within the current user context. Exploitation requires user interaction (victim opens a malicious file...
CVE-2021-40782
CVE-2021-40782: A null pointer dereference in Adobe Media Encoder when parsing specially crafted files could cause an application DoS. Affected: Adobe Media Encoder 15.4.1 and earlier (Windows/macOS); exploitation requires user interaction (victim opens a malicious file). Remediation: updates per...
CVE-2020-3764
CVE-2020-3764 affects Adobe Media Encoder versions 14.0 and earlier. The issue is an out-of-bounds write in the encoder, which could allow arbitrary code execution when exploiting the vulnerability. Publicly referenced materials in connected docs indicate the fix was delivered in the APSB20-10 ad...
CVE-2021-46818
Adobe Media Encoder, versions 15.4 and earlier, are affected by a memory corruption vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious M4A file, i.e., user interaction is needed. A patch is available per...
CVE-2021-46817
Affected software: Adobe Media Encoder (version 15.4 and earlier). Issue: memory corruption vulnerability in handling M4A files. Impact: unauthenticated attacker could achieve arbitrary code execution in the context of the current user. Prerequisites: user interaction is required (victim must ope...
CVE-2024-20772
Summary : CVE-2024-20772 affects Adobe Media Encoder 24.2.1, 23.6.4 and earlier. It is a stack-based buffer overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. Public references consi...
CVE-2020-9646
Adobe Media Encoder ≤14.2 is affected by an out-of-bounds write (CVE-2020-9646) that could allow arbitrary code execution. Impact is high for local/remote scenarios depending on vector; versions 14.3+ address the issue per APSB20-36. If applicable, upgrade to 14.3 to remediate (Windows/macOS).
CVE-2024-30278
CVE-2024-30278 affects Adobe Media Encoder 23.6.5, 24.3 and earlier. The issue is an out-of-bounds read in TGA/file parsing that can disclose sensitive memory and could bypass ASLR. Exploitation requires a user to open a malicious file (user interaction). Remediation is available via the APSB24-3...
CVE-2020-9650
CVE-2020-9650 affects Adobe Media Encoder 14.2 and earlier. Root cause: out-of-bounds write in the encoder leading to potential arbitrary code execution. Impact: security vulnerability with potential code execution on affected systems. Mitigation: upgrade to Adobe Media Encoder 14.3 or later as i...
CVE-2021-43756
CVE-2021-43756 affects Adobe Media Encoder versions 22.0 and 15.4.2 (and earlier). The issue is an Out-of-bounds Write memory corruption that could allow arbitrary code execution in the context of the current user, triggered when a user opens a malicious file. Exploitation requires user interacti...
CVE-2020-9739
Adobe Media Encoder versions 14.3.2 and earlier are affected by CVE-2020-9739, an out-of-bounds read in FLV file parsing that can crash the app or disclose memory contents. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). Remediation per APSB20-57 is...
CVE-2020-9744
Adobe Media Encoder 14.3.2 and earlier are affected by CVE-2020-9744, an out-of-bounds read that could crash or disclose memory contents. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The issue is addressed in Adobe’s APSB20-57 advisory; update to...
CVE-2020-9649
CVE-2020-9649 affects Adobe Media Encoder, with versions 14.2 and earlier vulnerable to an out-of-bounds read that could disclose information. Multiple connected sources corroborate this vulnerability and tie it to the APSB20-36 advisories. The vulnerability is limited to the out-of-bounds read i...
CVE-2021-43758
Adobe Media Encoder CVE-2021-43758 is an out-of-bounds read vulnerability affecting version 22.0 and 15.4.2 (and earlier). The issue can disclose sensitive memory and bypass ASLR, with exploitation requiring a user to open a malicious MP4 file. A patch is available via Adobe APSB21-118; updated v...
CVE-2020-9745
Adobe Media Encoder 14.3.2 and earlier is affected by an out-of-bounds read vulnerability in PSD file parsing that could allow reading past memory, potentially causing a crash or disclosure of information. Exploitation requires user interaction (visiting a malicious page or opening a malicious fi...
CVE-2019-8244
CVE-2019-8244 affects Adobe Media Encoder versions 13.1 and earlier, which contain an out-of-bounds read vulnerability that could lead to information disclosure. The public sources in the connected documents consistently attribute the issue to Adobe Media Encoder prior to 14.0 and reference the A...
CVE-2020-24423
Adobe Media Encoder on Windows (versions 14.4 and earlier) is affected by an uncontrolled search path vulnerability that can allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Connected advisories indicate...
CVE-2021-42721
CVE-2021-42721 affects Adobe Acrobat Bridge versions 11.1.1 and earlier, due to a use-after-free in the processing of Format event actions that can lead to arbitrary code execution in the current user context. Exploitation requires user interaction (victim opens a malicious file). The provided co...
CVE-2021-36060
Adobe Media Encoder 15.2 and earlier is affected by an out-of-bounds read in MPEG file parsing, enabling memory disclosure and potential bypass of ASLR. Exploitation requires user interaction (victim opens a crafted file). Affected version: 15.2 and earlier; remediation per APSB21-43 is to update...
CVE-2021-36015
Adobe Media Encoder 15.2 and earlier is affected by a memory corruption vulnerability when parsing a specially crafted file, potentially allowing arbitrary code execution in the current user context. Exploitation requires the victim to open a malicious file (user interaction). Public sources in c...
CVE-2021-36016
CVE-2021-36016 affects Adobe Media Encoder 15.2 and earlier, with an Out-of-bounds Read when parsing a crafted file. An unauthenticated attacker could read arbitrary file system information in the context of the current user, requiring the victim to open a malicious file (user interaction). Conne...
CVE-2021-28569
Adobe Media Encoder 15.1 and earlier are affected by a CVE-2021-28569 Out-of-bounds Read vulnerability when parsing a specially crafted file, enabling memory disclosure in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). The issue is address...
CVE-2021-36070
CVE-2021-36070 is an Adobe Media Encoder vulnerability affecting version 15.1 and earlier. The issue is an improper memory access when parsing a crafted SVG file, allowing code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious f...
CVE-2021-43013
CVE-2021-43013 affects Adobe Media Encoder 15.4.1 and earlier, with a memory corruption vulnerability that could lead to arbitrary code execution in the current user context. Exploitation requires the victim to open a malicious file (user interaction). Multiple connected advisories corroborate th...
CVE-2019-8243
Adobe Media Encoder is affected by an out-of-bounds read vulnerability (CVE-2019-8243) in version 13.1 and earlier, potentially leading to information disclosure. Public sources attribute this to the APSB19-52 advisory which also notes other related CVEs for the same product family. The vulnerabi...
CVE-2021-28590
Adobe Media Encoder (version 15.2 and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file, allowing arbitrary code execution in the current user context. Exploitation requires user interaction (victim opens a malicious file). Multiple connected source...
CVE-2021-36013
Adobe Media Encoder is affected by CVE-2021-36013 (Out-of-bounds Read) in version 15.2 and earlier when parsing a specially crafted file, enabling arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Multiple connecte...
CVE-2021-42726
CVE-2021-42726 affects Adobe Bridge 11.1.1 and earlier, with a memory corruption vulnerability caused by insecure handling of a malicious M4A file. This could allow arbitrary code execution in the context of the current user, and exploitation requires user interaction. The vulnerability is docume...
CVE-2024-49552
Adobe Media Encoder is affected by a Heap-based Buffer Overflow (CVE-2024-49552) in versions 25.0, 24.6.3 and earlier, allowing arbitrary code execution in the context of the current user if a user opens a crafted file. The root cause is a boundary error when processing untrusted input. Exploitat...
CVE-2019-7844
Adobe Media Encoder (Windows/macOS) 13.0.2 is affected by CVE-2019-7842 (use-after-free, remote code execution) and CVE-2019-7844 (out-of-bounds read, information disclosure) as described in APSB19-29. Nessus notes that versions prior to 13.1.0 are affected and lists the two CVEs tied to Media En...
CVE-2019-8246
CVE-2019-8246 : Adobe Media Encoder 13.1 and earlier contains an out-of-bounds write vulnerability that could allow arbitrary code execution. The issue is documented in APSB19-52 and NVD entries, with a CVSSv3 base score of 9.8 (NETWORK, HIGH impact, no user interaction). Public details indicate ...
CVE-2021-28589
Adobe Media Encoder, version 15.2 and earlier, is affected by an Out-of-bounds Read in file parsing that can allow arbitrary code execution in the context of the current user. Exploitation requires a user to open a malicious file. Several connected sources (NVD/NASL/APS) link this to CVE-2021-285...
CVE-2021-36014
Adobe Media Encoder is affected by CVE-2021-36014 in versions 15.2 and earlier, due to an uninitialized pointer when parsing a specially crafted file. An unauthenticated attacker could read arbitrary filesystem information in the context of the current user, with exploitation requiring user inter...
CVE-2019-8242
Adobe Media Encoder is affected by CVE-2019-8242. Version 13.1 and earlier contain an out-of-bounds read vulnerability that could lead to information disclosure if exploited. The issue is documented across multiple sources (NVD entry and vendor advisories) and is addressed by the APSB19-52 update...
CVE-2023-47044
Summary of CVE-2023-47044 (Adobe Media Encoder): A vulnerability in Adobe Media Encoder 24.0.2 and earlier and 23.6 and earlier is an Access of Uninitialized Pointer that could disclose sensitive memory and potentially bypass ASLR. Exploitation requires user interaction: a victim must open a mali...
CVE-2024-39377
CVE-2024-39377 affects Adobe Media Encoder versions 24.5, 23.6.8 and earlier, due to an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Affected platforms include Windows/macO...
CVE-2025-27195
Adobe Media Encoder (versions 25.1, 24.6.4 and earlier) is affected by a Heap-based Buffer Overflow (CVE-2025-27195) that could allow arbitrary code execution in the context of the current user, requiring user interaction (victim must open a malicious file). The issue stems from a heap-based over...
CVE-2023-47040
CVE-2023-47040 affects Adobe Media Encoder versions 24.0.2 and earlier and 23.6 and earlier, due to an out-of-bounds read when parsing crafted files. This can allow code execution in the user context and requires user interaction (victim opens a malicious file). Affected component: Media Encoder ...
CVE-2023-47043
Affected software: Adobe Media Encoder (Windows/macOS) — versions 24.0.2 and earlier, and 23.6 and earlier. Impact: out-of-bounds read while parsing a crafted file, potentially allowing code execution in the context of the current user. Conditions: exploitation requires user interaction (victim o...
CVE-2024-41870
CVE-2024-41870 affects Adobe Media Encoder. The vulnerability is an out-of-bounds read in the parser for crafted files, potentially causing disclosure of sensitive memory and enabling ASLR bypass. Exploitation requires user interaction (victim opens a malicious file). Affected versions include Me...
CVE-2021-43760
CVE-2021-43760 affects Adobe Media Encoder versions 22.0 and 15.4.2 (and earlier). It is an out-of-bounds read vulnerability that could disclose memory and bypass ASLR, with exploitation requiring a user to open a malicious MOV file. The connected advisories confirm fixes in APSB21-118, recommend...
CVE-2023-47041
Adobe Media Encoder is vulnerable to an out-of-bounds write in 24.0.2 and earlier and 23.6 and earlier, enabling arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file. Remediation is available: update to 24.0.3 or 23.6.2 (Adobe APSB23...
CVE-2024-49554
Adobe Media Encoder is affected by CVE-2024-49554: a NULL pointer dereference in versions 25.0, 24.6.3 and earlier can crash the application, causing a denial of service when a user opens a crafted file. Exploitation requires user interaction. The issue is acknowledged in APSB24-93; remediation i...
CVE-2025-27194
CVE-2025-27194 affects Adobe Media Encoder prior to 24.6.5 / 25.2. The issue is an out-of-bounds write in Media Encoder that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Affected versions incl...
CVE-2021-43757
Adobe Media Encoder is affected by CVE-2021-43757: out-of-bounds read in 22.0 and 15.4.2 (and earlier) that could disclose memory and bypass ASLR, with exploitation requiring user interaction via a malicious 3GP file. Remediation is to update to 22.1.1 or 15.4.3 (per APSB21-118).
CVE-2023-47042
CVE-2023-47042 affects Adobe Media Encoder. Affected: versions 24.0.2 and earlier, and 23.6 and earlier. Issue: a Heap-based Buffer Overflow in MP4/file parsing could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a mali...