Adobe Audition vulnerabilities

CVE-2023-47052 [MEDIUM] CWE-125 CVE-2023-47052: Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2023-47054 [MEDIUM] CWE-824 CVE-2023-47054: Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of Unin Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a mali

CVE-2023-47053 [MEDIUM] CWE-824 CVE-2023-47053: Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of Unin Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a mali

CVE-2021-40738 [HIGH] CWE-788 CVE-2021-40738: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when pars Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when parsing a WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40735 [HIGH] CWE-788 CVE-2021-40735: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability, potentia Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40736 [HIGH] CWE-788 CVE-2021-40736: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability, potentia Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40740 [HIGH] CWE-788 CVE-2021-40740: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when pars Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40734 [HIGH] CWE-788 CVE-2021-40734: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when pars Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when parsing a SVG file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40739 [HIGH] CWE-788 CVE-2021-40739: Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when pars Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

CVE-2021-40737 [MEDIUM] CWE-476 CVE-2021-40737: Adobe Audition version 14.4 (and earlier) is affected by a Null pointer dereference vulnerability wh Adobe Audition version 14.4 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim mu

CVE-2021-40742 [MEDIUM] CWE-476 CVE-2021-40742: Adobe Audition version 14.4 (and earlier) is affected by a Null pointer dereference vulnerability wh Adobe Audition version 14.4 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim mu

CVE-2021-40741 [MEDIUM] CWE-788 CVE-2021-40741: Adobe Audition version 14.4 (and earlier) is affected by an Access of Memory Location After End of B Adobe Audition version 14.4 (and earlier) is affected by an Access of Memory Location After End of Buffer vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interacti

CVE-2021-44699 [LOW] CWE-125 CVE-2021-44699: Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds r Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MP4 file.

CVE-2021-44697 [LOW] CWE-125 CVE-2021-44697: Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds r Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MOV file.

CVE-2021-44698 [LOW] CWE-125 CVE-2021-44698: Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds r Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious MP4 file.

CVE-2021-36003 [MEDIUM] CWE-125 CVE-2021-36003: Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when pa Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose arbitrary memory information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open

CVE-2020-9658 [HIGH] CWE-787 CVE-2020-9658: Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exp Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .

CVE-2020-9659 [HIGH] CWE-787 CVE-2020-9659: Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exp Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .

CVE-2020-9618 [MEDIUM] CWE-125 CVE-2020-9618: Adobe Audition versions 13.0.5 and earlier have an out-of-bounds read vulnerability. Successful expl Adobe Audition versions 13.0.5 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVE-2010-5258 [MEDIUM] CVE-2010-5258: Untrusted search path vulnerability in Adobe Audition 3.0 build 7283.0 allows local users to gain pr Untrusted search path vulnerability in Adobe Audition 3.0 build 7283.0 allows local users to gain privileges via a Trojan horse Assist.Dll file in the current working directory, as demonstrated by a directory that contains a .ses file. NOTE: some of these details are obtained from third party information.