CVE-2024-49551

Name of the Vulnerable Software and Affected Versions: Media Encoder versions 25.0, 24.6.3 and earlier

Description: The issue is related to an out-of-bounds write vulnerability in the Adobe Media Encoder application, which could allow an attacker to execute arbitrary code in the context of the current user. Exploitation of this issue requires user interaction, specifically that a victim must open a malicious file.

Recommendations: For Media Encoder versions 25.0, 24.6.3 and earlier, update to a version that is not affected by this issue to prevent arbitrary code execution. As a temporary workaround, consider avoiding the use of potentially malicious files with Media Encoder until a patch is available.