Vulnerability Details CVE-2021-40715
Adobe Premiere Pro version 15.4 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious .exr file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 81.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 9.3
References
Products affected by CVE-2021-40715
-
cpe:2.3:a:adobe:premiere_pro:-
-
cpe:2.3:a:adobe:premiere_pro:14.1
-
cpe:2.3:a:adobe:premiere_pro:14.2
-
cpe:2.3:a:adobe:premiere_pro:14.4
-
cpe:2.3:a:adobe:premiere_pro:15.4
-
cpe:2.3:o:microsoft:windows:-