Xmp Toolkit Software Development Kit Security Vulnerabilities and Issues — Xmp Toolkit Software Development Kit CVE List

Lucene search

AdobeXmp Toolkit Software Development Kit

28 matches found

CVE•added 2022/05/02 11:15 p.m.•116 views

CVE-2021-42529

XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

9.3CVSS7.7AI score0.00619EPSS

CVE•added 2022/05/02 11:15 p.m.•108 views

CVE-2021-42532

9.3CVSS7.7AI score0.00719EPSS

CVE•added 2022/05/02 11:15 p.m.•101 views

CVE-2021-42530

9.3CVSS7.7AI score0.00619EPSS

CVE•added 2022/05/02 11:15 p.m.•92 views

CVE-2021-42528

XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue r...

7.1CVSS5.6AI score0.0014EPSS

CVE•added 2022/05/02 11:15 p.m.•88 views

CVE-2021-42531

9.3CVSS7.7AI score0.014EPSS

CVE•added 2021/09/01 3:15 p.m.•73 views

CVE-2021-36053

XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

4.3CVSS3.5AI score0.00447EPSS

CVE•added 2021/10/13 5:15 p.m.•66 views

CVE-2021-40732

XMP Toolkit version 2020.1 (and earlier) is affected by a null pointer dereference vulnerability that could result in leaking data from certain memory locations and causing a local denial of service in the context of the current user. User interaction is required to exploit this vulnerability in th...

6.1CVSS6.2AI score0.00132EPSS

CVE•added 2021/09/01 3:15 p.m.•64 views

CVE-2021-39847

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

9.3CVSS7.7AI score0.00507EPSS

CVE•added 2021/09/01 3:15 p.m.•61 views

CVE-2021-36052

XMP Toolkit version 2020.1 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

7.8CVSS7.8AI score0.04499EPSS

CVE•added 2021/09/01 3:15 p.m.•60 views

CVE-2021-36046

9.3CVSS7.7AI score0.00583EPSS

CVE•added 2023/08/10 2:15 p.m.•60 views

CVE-2023-38210

Adobe XMP Toolkit versions 2022.06 is affected by a Uncontrolled Resource Consumption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in ...

5.5CVSS5.2AI score0.00111EPSS

CVE•added 2021/09/01 3:15 p.m.•59 views

CVE-2021-36050

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

9.3CVSS7.7AI score0.01262EPSS

CVE•added 2021/09/01 3:15 p.m.•58 views

CVE-2021-36045

4.3CVSS3.5AI score0.00584EPSS

CVE•added 2021/09/01 3:15 p.m.•58 views

CVE-2021-36055

XMP Toolkit SDK versions 2020.1 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

9.3CVSS7.6AI score0.00995EPSS

CVE•added 2025/04/08 7:15 p.m.•56 views

CVE-2025-30305

XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim mus...

5.5CVSS6.3AI score0.0003EPSS

CVE•added 2025/04/08 7:15 p.m.•56 views

CVE-2025-30306

5.5CVSS6.3AI score0.0003EPSS

CVE•added 2021/09/01 3:15 p.m.•55 views

CVE-2021-36064

XMP Toolkit version 2020.1 (and earlier) is affected by a Buffer Underflow vulnerability which could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

9.3CVSS7.6AI score0.00852EPSS

CVE•added 2021/09/01 3:15 p.m.•54 views

CVE-2021-36047

XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Improper Input Validation vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

9.3CVSS7.5AI score0.00879EPSS

CVE•added 2021/09/01 3:15 p.m.•54 views

CVE-2021-36054

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in local application denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

5.5CVSS4.7AI score0.00211EPSS

CVE•added 2021/09/01 3:15 p.m.•53 views

CVE-2021-36057

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a write-what-where condition vulnerability caused during the application's memory allocation process. This may cause the memory management functions to become mismatched resulting in local application denial of service in the context of th...

4CVSS3.7AI score0.00062EPSS

CVE•added 2021/10/04 2:15 p.m.•52 views

CVE-2021-36051

7.8CVSS7.8AI score0.03868EPSS

CVE•added 2021/09/29 4:15 p.m.•52 views

CVE-2021-40716

XMP Toolkit SDK versions 2021.07 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

5.5CVSS5.4AI score0.00217EPSS

CVE•added 2021/09/01 3:15 p.m.•49 views

CVE-2021-36056

9.3CVSS6.7AI score0.00404EPSS

CVE•added 2021/09/01 3:15 p.m.•49 views

CVE-2021-36058

XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Integer Overflow vulnerability potentially resulting in application-level denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

5.5CVSS5.6AI score0.00503EPSS

CVE•added 2025/04/08 7:15 p.m.•48 views

CVE-2025-30307

5.5CVSS6.3AI score0.0003EPSS

CVE•added 2021/09/01 3:15 p.m.•47 views

CVE-2021-36048

9.3CVSS7.5AI score0.00879EPSS

CVE•added 2025/04/08 7:15 p.m.•45 views

CVE-2025-30308

5.5CVSS6.3AI score0.0003EPSS

CVE•added 2025/04/08 7:15 p.m.•44 views

CVE-2025-30309

5.5CVSS6.3AI score0.0003EPSS