Описание
Adobe After Effects version 18.1 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An unauthenticated attacker could exploit this to to plant custom binaries and execute them with System permissions. Exploitation of this issue requires user interaction.
Ссылки
- Not ApplicableVendor Advisory
- Not ApplicableVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 18.1 (включая)
Одновременно
cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.0077
Низкий
8.3 High
CVSS3
8.6 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-427
Связанные уязвимости
github
больше 3 лет назад
Adobe After Effects version 18.1 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An unauthenticated attacker could exploit this to to plant custom binaries and execute them with System permissions. Exploitation of this issue requires user interaction.
EPSS
Процентиль: 73%
0.0077
Низкий
8.3 High
CVSS3
8.6 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-427