Lucene search
China National Vulnerability DatabaseCNVD-2023-17024HistoryFeb 17, 2023 - 12:00 a.m.
Adobe After Effects Out-of-Bounds Reading Vulnerability (CNVD-2023-17024)
2023-02-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
adobe after effects
visual effects
motion graphics
software
2d
3d compositing
animation
vulnerability
validation
user-supplied data
memory leak
security
.
0.002 Low
EPSS
Percentile
64.9%
Adobe After Effects is a suite of visual effects and motion graphics software from Adobe, Inc. The software is mainly used for 2D and 3D compositing, animation and visual effects creation, etc. An out-of-bounds read vulnerability exists in Adobe After Effects, which stems from a lack of proper validation of user-supplied data, where specially crafted data could trigger a read beyond the end of the allocated buffer. An attacker could exploit this vulnerability to cause a sensitive memory leak.
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe adobe after effects | le | 22.6.3 | |
| adobe adobe after effects | le | 23.1 |
Related
cve
cve
CVE-2023-22233
2023-02-17 22:15:13
cvelist
cvelist
prion
prion
Design/Logic Flaw
2023-02-17 22:15:00
zdi
zdi
nvd
nvd
CVE-2023-22233
2023-02-17 22:15:13
nessus
nessus
adobe
adobe
APSB23-02 : Security update available for Adobe After Effects
2023-02-14 00:00:00