High severity7.8NVD Advisory· Published Nov 18, 2021· Updated Jun 17, 2026
CVE-2021-40759
CVE-2021-40759
Description
Adobe After Effects version 18.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious .m4a file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.
Affected products
2<=18.4.1+ 1 more
- (no CPE)range: <=18.4.1
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/after_effects/apsb21-79.htmlnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.