Vulnerability Details CVE-2021-43015
Adobe InCopy version 16.4 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious GIF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.8%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 9.3
References
Products affected by CVE-2021-43015
-
cpe:2.3:a:adobe:incopy:-
-
cpe:2.3:a:adobe:incopy:15.1.3
-
cpe:2.3:a:adobe:incopy:16.0
-
cpe:2.3:a:adobe:incopy:16.4
-
cpe:2.3:o:apple:macos:-
-
cpe:2.3:o:microsoft:windows:-