CVE-2021-40765
EUVD-2021-2793016.03.2022, 15:15
Adobe Character Animator version 4.4 (and earlier) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| adobe | character_animator | 𝑥 ≤ 4.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-788 - Access of Memory Location After End of BufferThe software reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.
- CWE-119 - Improper Restriction of Operations within the Bounds of a Memory BufferThe software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.