漏洞标题
Adobe Premiere Rush JPEG File 解析超出边界读取信息泄露漏洞
漏洞描述信息
Adobe Premiere Rush JPEG文件解析越界读取信息泄露漏洞
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
Adobe Premiere Rush JPEG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
漏洞描述信息
Adobe Premiere Rush versions 2.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
漏洞类别
跨界内存读
漏洞标题
Adobe Premiere Rush 缓冲区错误漏洞
漏洞描述信息
Adobe Premiere Rush是美国奥多比(Adobe)公司的一套跨平台的视频编辑软件。 Adobe Premiere Rush 中存在缓冲区错误漏洞,该漏洞源于产品未能正确判断内存边界。远程攻击者可利用该漏洞可以创建一个特别制作的Photoshop文件,欺骗受害者打开它,触发内存损坏,并在目标系统上执行任意代码。
CVSS信息
N/A
漏洞类别
缓冲区错误