CVE-2023-22238
published 2023-02-17CVE-2023-22238: After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | after_effects | >= 22.0.0 < 22.6.4 | 22.6.4 |
| adobe | after_effects | >= 23.0.0 < 23.2.0 | 23.2.0 |
| adobe | after_effects | unspecified – 23.1 | — |