CVE-2021-40771— Adobe Prelude 缓冲区错误漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2021-40771の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Adobe Prelude WAV File Parsing Memory Corruption Arbitrary Code Execution
ソース: NVD (National Vulnerability Database)
脆弱性説明
Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
在缓冲区结束位置之后访问内存
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Adobe Prelude 缓冲区错误漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Adobe Prelude是美国奥多比(Adobe)公司的一套视频素材编辑剪辑工具。该产品能够对视频素材进行剪辑、排序和注释等。 Adobe Prelude 存在安全漏洞,该漏洞允许攻击者进行任意代码执行。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2021-40771の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2021-40771のインテリジェンス情報
请登录查看更多情报信息。
- https://helpx.adobe.com/security/products/prelude/apsb21-96.htmlx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2021-40771
Same Patch Batch · Adobe · 2021-11-22 · 12 CVEs total
| CVE-2021-42727 | 7.8 HIGH | Adobe Bridge Buffer Overflow Arbitrary code execution |
| CVE-2021-43015 | 7.8 HIGH | Adobe InCopy GIF File Parsing Memory Corruption Arbitrary Code Execution |
| CVE-2021-42738 | 7.8 HIGH | Adobe Prelude MXF File Parsing Memory Corruption Arbitrary Code Execution |
| CVE-2021-42737 | 7.8 HIGH | Adobe Prelude WAV File Parsing Memory Corruption Arbitrary Code Execution |
| CVE-2021-40770 | 7.8 HIGH | Adobe Prelude M4A File Parsing Memory Corruption Arbitrary Code Execution |
| CVE-2021-43016 | 5.5 MEDIUM | Adobe InCopy NULL Pointer Dereference Application Denial of Service |
| CVE-2021-42733 | 5.5 MEDIUM | Adobe Bridge NULL Pointer Dereference could lead to Application denial-of-service |
| CVE-2021-40774 | 5.5 MEDIUM | Adobe Prelude NULL Pointer Dereference Application Denial of Service |
| CVE-2021-40773 | 5.5 MEDIUM | Adobe Prelude NULL Pointer Dereference Application Denial of Service |
| CVE-2021-40775 | Adobe Prelude SVG File Parsing Memory Corruption Arbitrary Code Execution | |
| CVE-2021-40772 | Adobe Prelude M4A File Parsing Memory Corruption Arbitrary Code Execution |
IV. 関連脆弱性
同じ製品: Prelude
- CVE-2023-44362
ZDI-CAN-21791: Adobe Prelude MP4 File Uninitialized Variable - CVE-2021-44696
Adobe Prelude JPEG File Parsing Out-Of-Bounds Read Informati - CVE-2021-43754
Adobe Prelude Corruption could lead to Arbitrary code execut - CVE-2021-42738
Adobe Prelude MXF File Parsing Memory Corruption Arbitrary C - CVE-2021-42737
Adobe Prelude WAV File Parsing Memory Corruption Arbitrary C
同じベンダー: Adobe
- CVE-2026-34632
Photoshop Installer | CWE-427: Uncontrolled Search Path Elem - CVE-2026-27297
Adobe Framemaker | Integer Underflow (Wrap or Wraparound) (C - CVE-2026-27300
Adobe Framemaker | Access of Uninitialized Pointer (CWE-824) - CVE-2026-27296
Adobe Framemaker | Integer Underflow (Wrap or Wraparound) (C - CVE-2026-27290
Adobe Framemaker | Untrusted Search Path (CWE-426)
同じ弱点: CWE-788
- CVE-2023-20585
Microsoft Input-Output Memory Management Unit 安全漏洞 - CVE-2026-20052
Cisco Secure Firewall Threat Defense Software Snort 3 Memory - CVE-2026-21316
Audition | Access of Memory Location After End of Buffer (CW - CVE-2025-36581
Dell PowerEdge Platform 14G AMD BIOS 安全漏洞 - CVE-2025-43580
Audition | Access of Memory Location After End of Buffer (CW
V. CVE-2021-40771へのコメント
まだコメントはありません