CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-47058 – ZDI-CAN-21766: Adobe Premiere Pro MP4 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-47058
15 Nov 2023 — Adobe Premiere Pro version 24.0 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Premiere Pro versión 24.0 (y anteriores) y 23.6 (y anteriores) se ven afectados por ... • https://helpx.adobe.com/security/products/premiere_pro/apsb23-65.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-47059 – ZDI-CAN-21767: Adobe Premiere Pro MP4 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-47059
15 Nov 2023 — Adobe Premiere Pro version 24.0 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Premiere Pro versión 24.0 (y anteriores) y 23.6 (y anteriores) se ven afectados por ... • https://helpx.adobe.com/security/products/premiere_pro/apsb23-65.html • CWE-125: Out-of-bounds Read •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-47060 – ZDI-CAN-21792: Adobe Premiere Pro MP4 File Uninitialized Variable Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-47060
15 Nov 2023 — Adobe Premiere Pro version 24.0 (and earlier) and 23.6 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Premiere Pro versión 24.0 (y anteriores) y 23.6 (y anteriores) se ven afectados por una vulnerabilidad de acceso al puntero no inicializado q... • https://helpx.adobe.com/security/products/premiere_pro/apsb23-65.html • CWE-824: Access of Uninitialized Pointer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22234 – Adobe Premiere Rush PSD file Stack-based Buffer Overflow Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-22234
17 Feb 2023 — Adobe Premiere Rush version 2.6 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22244 – Adobe Premiere Rush PSD files Use After Free Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-22244
17 Feb 2023 — Adobe Premiere Rush version 2.6 (and earlier) is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-34235 – Adobe Premiere Elements Uncontrolled Search Path Element Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-34235
11 Aug 2022 — Adobe Premiere Elements version 2020v20 (and earlier) is affected by an Uncontrolled Search Path Element which could lead to Privilege Escalation. An attacker could leverage this vulnerability to obtain admin using an existing low-privileged user. Exploitation of this issue does not require user interaction. Adobe Premiere Elements versiones 2020v20 (y anteriores) está afectada por un elemento de ruta de búsqueda no controlada que podría conllevar a una elevación de privilegios. Un atacante podría aprovecha... • https://helpx.adobe.com/security/products/premiere_elements/apsb22-43.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-46816 – Adobe Premiere Pro M4A file memory corruption vulnerability could lead to remote code execution
https://notcve.org/view.php?id=CVE-2021-46816
13 Jun 2022 — Adobe Premiere Pro version 15.4 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious M4A file. Adobe Premiere Pro versión 15.4 (y anteriores), están afectadas por una vulnerabilidad de corrupción de memoria. Un atacante no autenticado podría aprovechar esta vulnerabilidad p... • https://helpx.adobe.com/security/products/premiere_pro/apsb21-67.html • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-42264 – Adobe Premiere Pro Null Pointer Dereference Application denial-of-service
https://notcve.org/view.php?id=CVE-2021-42264
16 Mar 2022 — Adobe Premiere Pro 15.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Premiere Pro 15.4.1 (y anteriores) está afectado por una vulnerabilidad de desreferencia de puntero Null cuando es analizado un arc... • https://helpx.adobe.com/security/products/premiere_pro/apsb21-100.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 8%CPEs: 3EXPL: 0CVE-2021-40793 – Adobe Premiere Pro WAV file memory corruption vulnerability could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-40793
16 Mar 2022 — Adobe Premiere Pro version 15.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability. Adobe Premiere Pro versión 15.4.1 (y anteriores), está afectado por una vulnerabilidad de corrupción de memoria debido a un manejo no seguro de un archivo malicioso, resultando potencialmente en una ejecución de código arbi... • https://helpx.adobe.com/security/products/premiere_pro/apsb21-100.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 8%CPEs: 3EXPL: 0CVE-2021-40794 – Adobe Premiere Pro MOV file memory corruption vulnerability could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-40794
16 Mar 2022 — Adobe Premiere Pro version 15.4.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability. Adobe Premiere Pro versión 15.4.1 (y anteriores), está afectado por una vulnerabilidad de corrupción de memoria debido a un manejo no seguro de un archivo malicioso, resultando potencialmente en una ejecución de código arbi... • https://helpx.adobe.com/security/products/premiere_pro/apsb21-100.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-788: Access of Memory Location After End of Buffer •