CVE-2021-36051

Summary

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a specially-crafted .cpp file.

Affected Software

VendorProductVersion RangeStatus
AdobeXMP Toolkitunspecified <= 2020.1affected
AdobeXMP Toolkitunspecified <= Noneaffected

Weaknesses

  • CWE-122: Heap-based Buffer Overflow (CWE-122)

ADP Enrichment

CVE Program Container

Additional References

References