First published: Wed Sep 01 2021(Updated: )
Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious Bridge file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Bridge CC | <=11.1 | |
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-36068 has a medium severity rating due to its potential to allow arbitrary code execution.
To fix CVE-2021-36068, users should update Adobe Bridge to version 11.2 or later.
CVE-2021-36068 affects users of Adobe Bridge version 11.1 and earlier.
The impact of CVE-2021-36068 includes the potential for arbitrary code execution in the context of the current user.
Yes, CVE-2021-36068 requires user interaction to exploit the memory corruption vulnerability.