New Search

Multiple vulnerabilities on Illustrator 2021 version 25.2.3 and?earlier?versions

oval:org.cisecurity:def:8885

Adobe Illustrator is affected by an use after free vulnerability. Successful exploitation could lead to arbitrary file system read. (CVE-2021-28593 CVE-2021-36008) Adobe Illustrator is affected by an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2021-28591 CVE-2021-28592) Adobe Illustrator is affected by an out-of-bounds read vulnerability. Successful exploitation could lead to arbitrary file system read. (CVE-2021-36010) Adobe Illustrator is affected by an access of memory location after end of buffer vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2021-36009)

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 8
  • Microsoft Windows 10
  • Microsoft Windows 7
  • Microsoft Windows Server 2008
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
Class:
vulnerability
Reference(s):
  • APSB21-42
  • CVE-2021-28593
  • CVE-2021-36008
  • CVE-2021-28591
  • CVE-2021-28592
  • CVE-2021-36010
  • CVE-2021-36009
Product(s):
  • Adobe Illustrator