Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2021-35995
CVE-2021-35995:
Adobe After Effects vulnerability analysis and mitigation
Overview
Adobe After Effects version 17.7.0 was found to contain multiple security vulnerabilities, including CVE-2021-35995. The vulnerability was discovered by Mat Powell of Trend Micro Zero Day Initiative (Adobe Security).
Technical details
The vulnerability has been assessed with a CVSS 3.0 score of 8.7, indicating a high severity level. The attack vector is network-based (AV:N) with low attack complexity (AC:L) and requires no privileges (PR:N). The scope is unchanged (S:U) and user interaction is required (UI:R), with potential for high impacts on confidentiality, integrity, and availability (ManageEngine Database).
Impact
The vulnerability could potentially lead to high impacts on confidentiality, integrity, and availability of the affected systems if successfully exploited (ManageEngine Database).
Mitigation and workarounds
Adobe has addressed this vulnerability in their security update. Users are advised to update to the latest version of Adobe After Effects (Adobe Security).
Additional resources
Source: This report was generated using AI
Related Adobe After Effects vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management