First published: Thu Nov 16 2023(Updated: )
Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|Affected Software||Affected Version||How to fix|
|Adobe Media Encoder||<=23.6.0|
|Adobe Media Encoder||>=24.0.0<=24.0.2|
The severity of CVE-2023-47041 is high with a CVSS score of 7.8.
Adobe Media Encoder version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by CVE-2023-47041.
Exploitation of CVE-2023-47041 requires user interaction, where a victim must open a malicious file.
To mitigate CVE-2023-47041, it is recommended to update Adobe Media Encoder to a version that is not affected by the vulnerability.
More information about CVE-2023-47041 can be found at the following reference: [Adobe Security Bulletin APSB23-63](https://helpx.adobe.com/security/products/media-encoder/apsb23-63.html)