CVE-2020-9638

7.8HIGH

Key Information:

Vendor: Adobe
Status: Adobe After Effects
Vendor: CVE Published:; 25 June 2020

Summary

Adobe After Effects versions 17.1 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution .

Affected Version(s)

Adobe After Effects 17.1 and earlier versions

References

https://helpx.adobe.com/security/products/after_effects/a...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 25, 2020
Vulnerability Reserved
Mar 2, 2020

.