Adobe Prelude up to 10.1 null pointer dereference

EntryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Adobe Prelude up to 10.1. It has been rated as problematic. This issue affects some unknown processing. Upgrading eliminates this vulnerability.

Field11/22/2021 07:49 PM11/25/2021 04:48 PM
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss3_cna_basescore5.55.5
cvss2_vuldb_basescore5.05.0
cvss2_vuldb_tempscore4.44.4
cvss3_vuldb_basescore4.34.3
cvss3_vuldb_tempscore4.14.1
cvss3_meta_basescore4.94.9
cvss3_meta_tempscore4.84.8
price_0day$0-$5k$0-$5k
vendorAdobeAdobe
namePreludePrelude
version<=10.1<=10.1
cwe476 (denial of service)476 (denial of service)
risk11
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
cvss3_cna_avLL
cvss3_cna_acLL
cvss3_cna_prNN
cvss3_cna_uiRR
cvss3_cna_sUU
cvss3_cna_cNN
cvss3_cna_iNN
cvss3_cna_aHH
identifierapsb21-96apsb21-96
urlhttps://helpx.adobe.com/security/products/prelude/apsb21-96.htmlhttps://helpx.adobe.com/security/products/prelude/apsb21-96.html
nameUpgradeUpgrade
cveCVE-2021-40774CVE-2021-40774
cve_assigned16310520001631052000
cve_cnaAdobe Systems IncorporatedAdobe Systems Incorporated
date1637535600 (11/22/2021)1637535600 (11/22/2021)
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cve_nvd_summaryAdobe Prelude version 10.1 (and earlier) is affected by a null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Want to stay up to date on a daily basis?

Enable the mail alert feature now!