CVE-2021-40703

Name of the Vulnerable Software and Affected Versions Adobe Premiere Elements versions prior to 2021.2235820

Description The issue is related to a memory corruption vulnerability due to insecure handling of a malicious m4a file. This could potentially result in arbitrary code execution in the context of the current user, with user interaction required to exploit the vulnerability. It is also described as a buffer overflow vulnerability in memory, which can be exploited by an attacker using a specially crafted file.

Recommendations For versions prior to 2021.2235820, update to a version later than 2021.2235820 to resolve the issue. As a temporary workaround, consider avoiding the use of malicious m4a files to minimize the risk of exploitation. Restrict access to untrusted files to prevent potential attacks.