U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): Adobe Media Encoder
  • Search Type: Search All
  • Match: Exact
  • CPE Name Search: false
There are 43 matching records.
Displaying matches 1 through 20.
Vuln ID Summary CVSS Severity
CVE-2023-47044

Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2023; 10:15:11 AM -0500 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2023-47043

Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2023; 10:15:10 AM -0500 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2023-47042

Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2023; 10:15:10 AM -0500 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2023-47041

Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2023; 10:15:10 AM -0500 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2023-47040

Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2023; 10:15:10 AM -0500 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2021-36060

Adobe Media Encoder version 15.2 (and earlier) is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: September 06, 2023; 10:15:09 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2021-43760

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MOV file.

Published: July 12, 2023; 8:15:09 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2021-43759

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MP4 file.

Published: July 12, 2023; 8:15:09 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2021-43758

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MP4 file.

Published: July 12, 2023; 8:15:09 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2021-43757

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious 3GP ​file

Published: July 12, 2023; 8:15:09 AM -0400 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2021-43756

Adobe Media Encoder versions 22.0, 15.4.2 (and earlier) are affected by an Out-of-bounds Write vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: June 15, 2022; 3:15:10 PM -0400 		V3.1: 7.8 HIGH
 V2.0: 9.3 HIGH
CVE-2021-46818

Adobe Media Encoder version 15.4 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious M4A file.

Published: June 13, 2022; 9:15:09 AM -0400 		V3.1: 7.8 HIGH
 V2.0: 6.8 MEDIUM
CVE-2021-46817

Adobe Media Encoder version 15.4 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious M4A file.

Published: June 13, 2022; 9:15:09 AM -0400 		V3.1: 7.8 HIGH
 V2.0: 6.8 MEDIUM
CVE-2021-40782

Adobe Media Encoder 15.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2021-40781

Adobe Media Encoder 15.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2021-40780

Adobe Media Encoder version 15.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.1: 7.8 HIGH
 V2.0: 9.3 HIGH
CVE-2021-40779

Adobe Media Encoder version 15.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.1: 7.8 HIGH
 V2.0: 9.3 HIGH
CVE-2021-40778

Adobe Media Encoder 15.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.1: 5.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2021-40777

Adobe Media Encoder version 15.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

Published: March 16, 2022; 11:15:13 AM -0400 		V3.x:(not available)
 V2.0: 9.3 HIGH
CVE-2021-43013

Adobe Media Encoder version 15.4.1 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Published: November 16, 2021; 3:15:07 PM -0500 		V3.1: 7.8 HIGH
 V2.0: 9.3 HIGH