CVE-2019-8062

CWE-427CWE-4263 documents3 sources
Severity
7.8HIGH
EPSS
1.6%
top 18.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe After EffectsAdobe Adobe After Effects
Timeline
PublishedAug 14
Latest updateMay 24

Description

Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to arbitrary code execution.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5adobe/adobe_after_effects16 and earlier versions

🔴Vulnerability Details

2
GHSA
GHSA-c6m9-3wv9-q2mf: Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking) vulnerability2022-05-24
CVEList
CVE-2019-8062: Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking) vulnerability2019-08-14
CVE-2019-8062 (HIGH CVSS 7.8) | Adobe After Effects versions 16 and | cvebase.io