Vulnerabilities > CVE-2021-40767 - Access of Memory Location After End of Buffer vulnerability in Adobe Character Animator

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

adobe

CWE-788

NVD

Published: 2022-03-16

Updated: 2023-11-07

Summary

Adobe Character Animator version 4.4 (and earlier) is affected by an Access of Memory Location After End of Buffer vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe Character Animator - Adobe Character Animator 2.1 Adobe Character Animator 3.2 Adobe Character Animator 3.3 Adobe Character Animator 4.4	5
OS	Apple Apple Macos -	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-788 - Access of Memory Location After End of Buffer

References

https://helpx.adobe.com/security/products/character_animator/apsb21-95.html