Published: 20/02/2020 Updated: 24/02/2020
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Adobe After Effects versions 16.1.2 and previous versions have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.

Vulnerability Trend

Affected Products

Vendor Product Versions
AdobeAfter Effects16.1.2

Vendor Advisories

Adobe has released an update for Adobe After Effects for Windows This update resolves a critical out-of-bounds write vulnerability that could lead to arbitrary code execution in the context of the current user ...

Recent Articles

Critical Adobe Flaws Fixed in Out-of-Band Update
Threatpost • Lindsey O'Donnell • 20 Feb 2020

Adobe has issued unscheduled patches for two critical vulnerabilities that, if exploited, enable an attacker to execute remote code on targeted devices.
The two apps affected by the critical flaws are Adobe After Effects, a visual effects and motion graphics app used for post-production film making and video game production, and Adobe Media Encoder, an application to help with media processing requirements for audio and video.
“Both vulnerabilities can be exploited by a remote, una...