VDB
CVE-2021-42533
CVE-2021-42533
PUBLISHED
CVSS 7.800000190734863 HIGH
Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing a crafted DCM file, which could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
EPSS 4.72% · 89.6th percentile
Risk Scores
CVSS v3.0
7.800000190734863
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
4.72%
89.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| adobe | bridge | 0 |
| Adobe | Bridge | *, * |
Timeline
- Mar 16, 2022 CVE Published
- Mar 17, 2022 EPSS Score
- May 7, 2022 EPSS Score
- Jun 27, 2022 EPSS Score
- Oct 8, 2022 EPSS Score
- Nov 29, 2022 EPSS Score
- Jan 19, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
- May 1, 2023 EPSS Score
- Aug 11, 2023 EPSS Score
- Oct 1, 2023 EPSS Score