Memory Corruption Vulnerability in Adobe Character Animator 4.4 and Earlier: Arbitrary Code Execution via M4A File Parsing

Memory Corruption Vulnerability in Adobe Character Animator 4.4 and Earlier: Arbitrary Code Execution via M4A File Parsing

CVE-2021-40764 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Adobe Character Animator version 4.4 (and earlier) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

Learn more about our User Device Pen Test.