CVE-2021-40710— Adobe Premiere Pro 缓冲区错误漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2021-40710の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Adobe Premiere Pro 2021 SVG File Parsing Leads to Memory Corruption
ソース: NVD (National Vulnerability Database)
脆弱性説明
Adobe Premiere Pro version 15.4 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
在缓冲区结束位置之后访问内存
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Adobe Premiere Pro 缓冲区错误漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Adobe Premiere Pro是美国奥多比(Adobe)公司的一套非线性编辑的视频剪辑软件。 Adobe Premiere Pro存在缓冲区错误漏洞,攻击者可利用该漏洞执行任意代码。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2021-40710の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2021-40710のインテリジェンス情報
请登录查看更多情报信息。
Same Patch Batch · Adobe · 2021-09-29 · 41 CVEs total
| CVE-2021-39863 | 7.8 HIGH | Adobe Acrobat Reader DC Heap-based Buffer Overflow Vulnerability Could Lead To Arbitrary C |
| CVE-2021-40715 | 7.8 HIGH | Adobe Premiere Pro 2021 EXR File Parsing Leads to Memory Corruption |
| CVE-2021-39831 | 7.8 HIGH | Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2021-39843 | 7.8 HIGH | Adobe Acrobat Reader XObject Out-of-Bound Write Vulnerability |
| CVE-2021-40708 | 7.3 HIGH | Adobe Genuine Service Installer Privilege Escalation Vulnerability |
| CVE-2021-39855 | 6.5 MEDIUM | Adobe Acrobat Reader DC NTLMv2 SSO Information Disclosure via src Parameter |
| CVE-2021-39856 | 6.5 MEDIUM | Adobe Acrobat Reader DC NTLMv2 SSO Information Disclosure via LoadFile |
| CVE-2021-39845 | 6.1 MEDIUM | Adobe Acrobat Reader Page Tree Node Recursive Stack Overflow |
| CVE-2021-39846 | 6.1 MEDIUM | Adobe Acrobat Reader /Parent Property Recursive Stack Overflow |
| CVE-2021-39861 | 5.5 MEDIUM | Adobe Acrobat Reader DC Catalog Plugin Out-of-Bounds Read Bug |
| CVE-2021-39860 | 5.5 MEDIUM | Adobe Acrobat Reader DC Search Plugin Null Pointer Dereference |
| CVE-2021-39849 | 5.5 MEDIUM | Adobe Acrobat Reader DC Null Pointer Dereference Could Lead To Application Denial-of-Servi |
| CVE-2021-39850 | 5.5 MEDIUM | Adobe Acrobat Reader DC Null Pointer Dereference Could Lead To Application Denial-of-Servi |
| CVE-2021-39852 | 5.5 MEDIUM | Adobe Acrobat Reader DC Null Pointer Dereference Could Lead To Application Denial-of-Servi |
| CVE-2021-39851 | 5.5 MEDIUM | Adobe Acrobat Reader DC Null Pointer Dereference Could Lead To Application Denial-of-Servi |
| CVE-2021-39844 | 3.3 LOW | Adobe Acrobat Reader CalRGB Out-of-Bounds Read Vulnerability |
| CVE-2021-39836 | Adobe Acrobat Reader DC AcroForm buttonGetIcon Use-After-Free Remote Code Execution Vulner | |
| CVE-2021-39835 | Adobe FrameMaker PDF File Parsing Use-After-Free Information Disclosure Vulnerability | |
| CVE-2021-39837 | Adobe Acrobat Reader DC AcroForm deleteItemAt Use-After-Free Remote Code Execution Vulnera | |
| CVE-2021-39853 | Adobe Acrobat Reader DC Null Pointer Dereference Could Lead To Application Denial-of-Servi |
Showing 20 of 41 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Premiere
- CVE-2021-46816
Adobe Premiere Pro M4A file memory corruption vulnerability - CVE-2021-42264
Adobe Premiere Pro Null Pointer Dereference Application deni - CVE-2021-40793
Adobe Premiere Pro WAV file memory corruption vulnerability - CVE-2021-40794
Adobe Premiere Pro MOV file memory corruption vulnerability - CVE-2021-40792
Adobe Premiere Pro WAV file memory corruption vulnerability
同じベンダー: Adobe
- CVE-2026-34632
Photoshop Installer | CWE-427: Uncontrolled Search Path Elem - CVE-2026-27297
Adobe Framemaker | Integer Underflow (Wrap or Wraparound) (C - CVE-2026-27300
Adobe Framemaker | Access of Uninitialized Pointer (CWE-824) - CVE-2026-27296
Adobe Framemaker | Integer Underflow (Wrap or Wraparound) (C - CVE-2026-27290
Adobe Framemaker | Untrusted Search Path (CWE-426)
同じ弱点: CWE-788
- CVE-2023-20585
Microsoft Input-Output Memory Management Unit 安全漏洞 - CVE-2026-20052
Cisco Secure Firewall Threat Defense Software Snort 3 Memory - CVE-2026-21316
Audition | Access of Memory Location After End of Buffer (CW - CVE-2025-36581
Dell PowerEdge Platform 14G AMD BIOS 安全漏洞 - CVE-2025-43580
Audition | Access of Memory Location After End of Buffer (CW
V. CVE-2021-40710へのコメント
まだコメントはありません