Adobe Premiere Rush version 1.5.16 (and earlier) is...
High severity
Unreviewed
Published
Dec 21, 2021
to the GitHub Advisory Database
•
Updated Feb 1, 2023
Description
Published by the National Vulnerability Database
Dec 20, 2021
Published to the GitHub Advisory Database
Dec 21, 2021
Last updated
Feb 1, 2023
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious EXR file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
References