CVE-2021-40783
EUVD-2021-2794820.12.2021, 21:15
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| adobe | premiere_rush | 𝑥 ≤ 1.5.16 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-788 - Access of Memory Location After End of BufferThe software reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.
- CWE-119 - Improper Restriction of Operations within the Bounds of a Memory BufferThe software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.