Vulnerabilities > CVE-2021-43016 - NULL Pointer Dereference vulnerability in Adobe Incopy 15.1.3/16.0/16.4

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

Adobe InCopy version 16.4 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vulnerable Configurations

Part Description Count
Application
Adobe
4
OS
Apple
1
OS
Microsoft
1

Common Weakness Enumeration (CWE)