Vulnerabilities > CVE-2021-43028 - Out-of-bounds Write vulnerability in Adobe Premiere Rush 1.5.12/1.5.8

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
adobe
CWE-787
critical

Summary

Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.

Vulnerable Configurations

Part Description Count
Application
Adobe
2
OS
Microsoft
1

Common Weakness Enumeration (CWE)