CVE-2021-36047

Summary

XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Improper Input Validation vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

Affected Software

VendorProductVersion RangeStatus
AdobeXMP Toolkitunspecified <= 2020.1affected
AdobeXMP Toolkitunspecified <= Noneaffected

Weaknesses

  • CWE-20: Improper Input Validation (CWE-20)

ADP Enrichment

CVE Program Container

Additional References

References