VDB
CVE-2021-36045
CVE-2021-36045
PUBLISHED
CVSS 3.299999952316284 LOW
XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
EPSS 0.30% · 53.3th percentile
Risk Scores
CVSS 3.1
3.299999952316284
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
0.30%
53.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| debian | debian_linux | 10.0 |
| Adobe | XMP Toolkit | unspecified, * |
| adobe | xmp_toolkit_software_development_kit | 0 |
Timeline
- Sep 1, 2021 CVE Published
- Sep 2, 2021 EPSS Score
- Sep 9, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 22, 2022 EPSS Score
- Jun 19, 2022 EPSS Score
- Aug 17, 2022 EPSS Score
- Dec 10, 2022 EPSS Score
- Feb 6, 2023 EPSS Score