Lucene search
AdobeCVE-2021-43753HistorySep 07, 2023 - 1:15 p.m.
CVE-2021-43753
2023-09-0713:15:08
CWE-416
adobe
web.nvd.nist.gov
150
adobe
lightroom
use-after-free
vulnerability
tif
parsing
privilege escalation
cve-2021-43753
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.063
Percentile
93.8%
Adobe Lightroom versions 4.4 (and earlier) are affected by a use-after-free vulnerability in the processing of parsing TIF files that could result in privilege escalation. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected configurations
Node
adobelightroomRange<5.1
microsoftwindowsMatch-
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Lightroom Desktop",
"vendor": "Adobe",
"versions": [
{
"lessThanOrEqual": "4.4",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
adobe
adobe
APSB21-119 : Security update available for Adobe Lightroom
2021-12-14 00:00:00
prion
prion
Design/Logic Flaw
2023-09-07 13:15:00
zdi
zdi
cnvd
cnvd
Adobe Lightroom Elevation of Privilege Vulnerability
2021-12-16 00:00:00
nvd
nvd
CVE-2021-43753
2023-09-07 13:15:08
cvelist
cvelist
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.063
Percentile
93.8%
Related for CVE-2021-43753