CVE-2022-34235

CWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 63.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Premiere Elements
Timeline
PublishedAug 11
Latest updateAug 12

Description

Adobe Premiere Elements version 2020v20 (and earlier) is affected by an Uncontrolled Search Path Element which could lead to Privilege Escalation. An attacker could leverage this vulnerability to obtain admin using an existing low-privileged user. Exploitation of this issue does not require user interaction.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5adobe/premiere_elementsunspecified2020v20+1

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-pf62-qq47-m25x: Adobe Premiere Elements version 2020v20 (and earlier) is affected by an Uncontrolled Search Path Element which could lead to Privilege Escalation2022-08-12
CVEList
Adobe Premiere Elements Uncontrolled Search Path Element Privilege Escalation2022-08-11
CVE-2022-34235 (HIGH CVSS 7.8) | Adobe Premiere Elements version 202 | cvebase.io