PT-2021-5397 · Adobe · Bridge

Published

2021-10-26

Updated

2022-03-22

CVE-2021-40750

CVSS v2.0

8.8

High

Vector

AV:N/AC:M/Au:N/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Bridge versions 11.1.1 and earlier

Description The issue is related to a Null pointer dereference when parsing a specially crafted file. An unauthenticated attacker could leverage this to achieve an application denial-of-service in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious file.

Recommendations For Adobe Bridge versions 11.1.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2021-06236

CVE-2021-40750

Affected Products

Bridge

PT-2021-5397 · Adobe · Bridge

CVE-2021-40750

Weakness Enumeration

Related Identifiers

Affected Products

References · 5