Adobe Not A Product vulnerabilities

CVE-2024-49513 [HIGH] CWE-787 CVE-2024-49513: PDFL SDK versions 21.0.0.5 and earlier are affected by an out-of-bounds write vulnerability that cou PDFL SDK versions 21.0.0.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2023-48631 [MEDIUM] CWE-20 CVE-2023-48631: @adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerabili @adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS.

CVE-2023-26364 [MEDIUM] CWE-20 CVE-2023-26364: @adobe/css-tools version 4.3.0 and earlier are affected by an Improper Input Validation vulnerabilit @adobe/css-tools version 4.3.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a minor denial of service while attempting to parse CSS. Exploitation of this issue does not require user interaction or privileges.

CVE-2021-40703 [HIGH] CWE-788 CVE-2021-40703: Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulner Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious m4a file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.