Vulnerability Details CVE-2020-9745
Adobe Media Encoder version 14.3.2 (and earlier versions) has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 79.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 5.8
References
Products affected by CVE-2020-9745
-
cpe:2.3:a:adobe:media_encoder:-
-
cpe:2.3:a:adobe:media_encoder:13.0.2
-
cpe:2.3:a:adobe:media_encoder:13.1
-
cpe:2.3:a:adobe:media_encoder:14.0
-
cpe:2.3:a:adobe:media_encoder:14.0.2
-
cpe:2.3:a:adobe:media_encoder:14.0.3
-
cpe:2.3:a:adobe:media_encoder:14.2
-
cpe:2.3:a:adobe:media_encoder:14.3
-
cpe:2.3:a:adobe:media_encoder:14.3.1
-
cpe:2.3:a:adobe:media_encoder:14.3.2
-
cpe:2.3:o:microsoft:windows:-