Vulnerabilities > CVE-2020-9748 - Out-of-bounds Write vulnerability in Adobe Animate 15.2.1.95/20.5

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
adobe
CWE-787
critical

Summary

Adobe Animate version 20.5 (and earlier) is affected by a stack overflow vulnerability, which could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted .fla file in Animate.

Vulnerable Configurations

Part Description Count
Application
Adobe
2
OS
Microsoft
1

Common Weakness Enumeration (CWE)