Home

CVE-2021-21008

Description

Adobe Animate version 21.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Risk Information

Base Score
7.0
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.675

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Adobe Animate 20.5.2Windows
Multiple Vulnerabilities are affected in Adobe Animate 21.0.1Windows
Multiple vulnerabilities are fixed in Adobe Animate for Mac 20.5.3Mac
Vulnerabilities CVE-2021-21008 are fixed in Adobe Animate for Mac 21.0.2Mac

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234