Lucene search
Ubuntu.comUB:CVE-2021-36048HistorySep 01, 2021 - 12:00 a.m.
CVE-2021-36048
2021-09-0100:00:00
ubuntu.com
ubuntu.com
4
0.004 Low
EPSS
Percentile
72.5%
XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Improper
Input Validation vulnerability potentially resulting in arbitrary code
execution in the context of the current user. Exploitation requires user
interaction in that a victim must open a crafted file.
Notes
| Author | Note |
|---|---|
| mdeslaur | fixed in adobe’s 2021.07 code drop |
References
gitlab.freedesktop.org/libopenraw/exempi/-/releases
helpx.adobe.com/security/products/xmpcore/apsb21-65.html
launchpad.net/bugs/cve/CVE-2021-36048
nvd.nist.gov/vuln/detail/CVE-2021-36048
security-tracker.debian.org/tracker/CVE-2021-36048
ubuntu.com/security/notices/USN-5483-1
www.cve.org/CVERecord?id=CVE-2021-36048
Related
cnvd
cnvd
cve
cve
CVE-2021-36048
2021-09-01 15:15:00
veracode
veracode
Arbitrary Code Execution
2022-05-12 11:22:18
osv
osv
CVE-2021-36048
2021-09-01 15:15:10
exempi vulnerabilities
2022-06-16 15:33:59
exempi - security update
2023-09-25 00:00:00
debiancve
debiancve
CVE-2021-36048
2021-09-01 15:15:00
prion
prion
Input validation
2021-09-01 15:15:00
cvelist
cvelist
adobe
adobe
APSB21-65 Security updates available for Adobe XMP Toolkit SDK
2021-08-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0236)
2022-06-20 00:00:00
Ubuntu: Security Advisory (USN-5483-1)
2022-06-17 00:00:00
Debian: Security Advisory (DLA-3585-1)
2023-09-26 00:00:00
mageia
mageia
Updated exempi packages fix security vulnerability
2022-06-19 00:30:41
nessus
nessus
Debian DLA-3585-1 : exempi - LTS security update
2023-09-26 00:00:00
ubuntu
ubuntu
Exempi vulnerabilities
2022-06-16 00:00:00
debian
debian
[SECURITY] [DLA 3585-1] exempi security update
2023-09-25 22:37:52