CVE-2021-36058

Severity CVSS v4.0:
Pending analysis
Type:
CWE-190 Integer Overflow or Wraparound
Publication date:
01/09/2021
Last modified:
20/10/2023

Description

XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Integer Overflow vulnerability potentially resulting in application-level denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:adobe:xmp_toolkit_software_development_kit:*:*:*:*:*:*:*:* 2020.1 (including)
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*