What is CVE-2024-34123?

CVE-2024-34123 is a high-severity vulnerability in Adobe Premiere Pro, classified under Untrusted Search Path. CVSS score: 7.0/10. Published 2024-07-09.

How severe is CVE-2024-34123?

High severity. CVSS v3 base score is 7.0 out of 10.

Vulnerability in Adobe Premiere Pro

CVE-2024-34123

Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution. An attacker could exploit this vulnerability by inserting a malicious file into the search…

EPSS: 0.003 (49.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.0 (High). Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Adobe Premiere Pro — versions 0

Weakness classification (CWE)

CWE-426 — Untrusted Search Path

References

helpx.adobe.com/security/products/premiere_pro/apsb24-46.html (vendor-advisory)

Frequently asked questions

What is CVE-2024-34123?: CVE-2024-34123 is a high-severity vulnerability in Adobe Premiere Pro, classified under Untrusted Search Path. CVSS score: 7.0/10. Published 2024-07-09.
How severe is CVE-2024-34123?: High severity. CVSS v3 base score is 7.0 out of 10.