Lucene search

GoogleOSV:CVE-2021-36052

HistorySep 01, 2021 - 3:15 p.m.

CVE-2021-36052

2021-09-0115:15:10

Google

osv.dev

xmp toolkit

memory corruption

arbitrary code execution

user interaction

software

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

50.3%

JSON

XMP Toolkit version 2020.1 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

References

helpx.adobe.com/security/products/xmpcore/apsb21-65.html

lists.debian.org/debian-lts-announce/2023/09/msg00032.html