Lucene search
K
AdobeLightroom

8 matches found

CVE
CVE
added 2023/09/07 12:54 p.m.257 views

CVE-2021-43753

CVE-2021-43753 affects Adobe Lightroom versions 4.4 and earlier, due to a use-after-free in parsing TIF files that could lead to privilege escalation. Exploitation requires user interaction (opening a malicious file). Mitigation in the provided documents: Adobe released Lightroom security updates...

7.8CVSS7.5AI score0.00409EPSS
CVE
CVE
added 2020/08/19 2:16 p.m.251 views

CVE-2020-9724

CVE-2020-9724 affects Adobe Lightroom Classic (Windows/macOS) 9.2.0.10 and earlier due to an insecure library loading vulnerability. The root cause is insecure loading of a library, enabling privilege escalation within the current user context. Adobe’s advisory APSB20-51 recommends updating Light...

7.8CVSS7.4AI score0.02743EPSS
CVE
CVE
added 2024/03/18 5:12 p.m.191 views

CVE-2024-20754

Adobe Lightroom Desktop

7.8CVSS7.1AI score0.00334EPSS
CVE
CVE
added 2025/05/13 5:13 p.m.135 views

CVE-2025-27197

CVE-2025-27197 affects Adobe Lightroom Desktop: versions 8.2 and earlier are vulnerable to an out-of-bounds write that can allow arbitrary code execution under the current user. Exploitation requires user interaction—victim must open a malicious file. Affected product/component: Lightroom Desktop...

7.8CVSS7.9AI score0.00181EPSS
CVE
CVE
added 2022/06/15 6:35 p.m.131 views

CVE-2021-40776

CVE-2021-40776 affects Adobe Lightroom Classic 10.3 and earlier. The vulnerability is a local privilege escalation in the Offline Lightroom Classic installer, exploitable by an authenticated user with high privileges after user interaction is triggered before product installation. Affected platfo...

6.6CVSS6.3AI score0.0052EPSS
CVE
CVE
added 2024/10/09 9:42 a.m.95 views

CVE-2024-45145

Adobe Lightroom Desktop vulnerable to an out-of-bounds read (CWE-125) in versions 7.4.1, 13.5, 12.5.1 and earlier, with the issue allowing disclosure of sensitive memory and potential bypass of ASLR. Exploitation requires user interaction (victim opens a malicious file). The security context and ...

5.5CVSS5.1AI score0.0022EPSS
CVE
CVE
added 2020/12/11 2:15 a.m.80 views

CVE-2020-24447

CVE-2020-24447 affects Adobe Lightroom Classic for Windows (10.0 and earlier). The issue is an uncontrolled search path element in Lightroom Classic that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious...

7CVSS7AI score0.00755EPSS
CVE
CVE
added 2026/02/10 7:43 p.m.20 views

CVE-2026-21349

Lightroom Desktop vulnerable to an out-of-bounds write (CWE-787) in version 15.1 and earlier, enabling arbitrary code execution in the current user context after opening a malicious file. Affected products/versions are consistently stated across CVE sources (NVD/Red Hat). Root cause is an out-of-...

7.8CVSS6.3AI score0.00139EPSS