Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing a crafted DCM file, which could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/bridge/apsb21-94.html | Patch Vendor Advisory |
Configurations
History
07 Nov 2023, 03:39
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : unknown |
22 Mar 2022, 18:57
Type | Values Removed | Values Added |
---|---|---|
First Time |
Adobe bridge
Adobe |
|
CPE | cpe:2.3:a:adobe:bridge:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
References | (MISC) https://helpx.adobe.com/security/products/bridge/apsb21-94.html - Patch, Vendor Advisory |
16 Mar 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-16 15:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-42533
Mitre link : CVE-2021-42533
CVE.ORG link : CVE-2021-42533
JSON object : View
Products Affected
adobe
- bridge
CWE
CWE-415
Double Free