Other | Uncontrolled Resource Consumption (CWE-400)
CVE-2023-38210

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: XMP Toolkit
Vendor: CVE Published:; 10 August 2023

Summary

Adobe XMP Toolkit versions 2022.06 is affected by a Uncontrolled Resource Consumption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected Version(s)

XMP Toolkit 0 <= 2022.06

References

https://helpx.adobe.com/security/products/xmpcore/apsb23-...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 10, 2023
Vulnerability Reserved
Jul 13, 2023