VYPR
Unrated severityNVD Advisory· Published Sep 8, 2021· Updated Sep 16, 2024

Medium by Adobe file parsing buffer overflow vulnerability could lead to arbitrary code execution

CVE-2021-28580

Description

Medium by Adobe version 2.4.5.331 (and earlier) is affected by a buffer overflow vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • Adobe Inc./Mediumllm-create2 versions
    <=2.4.5.331+ 1 more
    • (no CPE)range: <=2.4.5.331
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.