What is CVE-2026-34640?

CVE-2026-34640 is a high-severity vulnerability in Adobe Media Encoder, classified under Integer Overflow or Wraparound. CVSS score: 7.8/10. Published 2026-05-12.

How severe is CVE-2026-34640?

High severity. CVSS v3 base score is 7.8 out of 10.

Integer overflow in Adobe Media Encoder

CVE-2026-34640

Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user in…

Vulnerability class: Integer Overflow

EPSS: 0.000 (8.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Adobe Media Encoder — versions 0
Adobe Media_encoder

Weakness classification (CWE)

CWE-190 — Integer Overflow or Wraparound

References

psirt@adobe.com (vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2026-34640?: CVE-2026-34640 is a high-severity vulnerability in Adobe Media Encoder, classified under Integer Overflow or Wraparound. CVSS score: 7.8/10. Published 2026-05-12.
How severe is CVE-2026-34640?: High severity. CVSS v3 base score is 7.8 out of 10.