First published: Wed Jun 15 2022(Updated: )
Adobe After Effects versions 22.0 (and earlier) and 18.4.2 (and earlier) are affected by an Out-of-bounds Write vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe After Effects 2025 | <=18.4.2 | |
Adobe After Effects 2025 | >=22.0<22.1.1 | |
macOS | ||
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-43755.
Adobe After Effects versions 22.0 (and earlier) and 18.4.2 (and earlier) are affected.
The severity of CVE-2021-43755 is high with a CVSS score of 7.8.
This vulnerability can potentially result in arbitrary code execution in the context of the current user.
Yes, user interaction is required to exploit this vulnerability.
To fix CVE-2021-43755, update Adobe After Effects to version 22.1.1 or later.