Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-28hr-vp5p-6328

Опубликовано: 16 июн. 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

EPSS

Процентиль: 79%
0.01338
Низкий

7.8 High

CVSS3

Дефекты

CWE-787
CWE-788

Связанные уязвимости

CVSS3: 7.8
nvd
около 3 лет назад

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an Out-of-bounds Write vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS3: 7.8
fstec
больше 3 лет назад

Уязвимость приложения для обработки медиаданных Adobe Media Encoder, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 79%
0.01338
Низкий

7.8 High

CVSS3

Дефекты

CWE-787
CWE-788