After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CPE | Name | Operator | Version |
---|---|---|---|
after_effects | ge | 22.0.0 | |
after_effects | lt | 22.6.4 | |
after_effects | ge | 23.0.0 | |
after_effects | lt | 23.2.0 |