CVE-2021-43750 : What You Need to Know

Adobe Premiere Rush versions 1.5.16 and earlier are affected by a Null pointer dereference vulnerability allowing an attacker to achieve denial-of-service. Learn more about this CVE.

Understanding CVE-2021-43750

What is CVE-2021-43750?

Adobe Premiere Rush versions 1.5.16 and earlier are prone to a Null pointer dereference vulnerability. An unauthenticated attacker could exploit this flaw to cause a denial-of-service in the context of the current user.

The Impact of CVE-2021-43750

Exploitation of this vulnerability could lead to an application denial-of-service with high availability impact, requiring user interaction by opening a malicious file.

Technical Details of CVE-2021-43750

Vulnerability Description

The CVE involves a Null pointer dereference vulnerability in Adobe Premiere Rush versions 1.5.16 and earlier, enabling attackers to cause a denial-of-service.

Affected Systems and Versions

Product: Premiere Rush
Vendor: Adobe
Vulnerable Versions: 1.5.16 and earlier

Exploitation Mechanism

Attack Complexity: Low
Attack Vector: Local
Privileges Required: None
User Interaction: Required
Scope: Unchanged
CVSS Base Score: 5.5 (Medium Severity)

Mitigation and Prevention

Immediate Steps to Take

Update Adobe Premiere Rush to a non-vulnerable version.
Exercise caution when opening files of unknown or untrusted origins.

Long-Term Security Practices

Regularly update software and apply security patches.
Utilize endpoint protection tools and best practices.

Patching and Updates

Patches and updates addressing this vulnerability can be found in the security advisory provided by Adobe.