Описание
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.
Ссылки
- PatchVendor Advisory
- Mailing List
- PatchVendor Advisory
- Mailing List
Уязвимые конфигурации
EPSS
5.5 Medium
CVSS3
7.3 High
CVSS3
9.3 Critical
CVSS2
Дефекты
Связанные уязвимости
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer o ...
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.
Уязвимость программного обеспечения создания метаданных, обработки и обмена наборов стандартов Adobe XMP-Toolkit-SDK, связанная с переполнением буфера в динамической памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5.5 Medium
CVSS3
7.3 High
CVSS3
9.3 Critical
CVSS2