CVE-2021-40776

Description

Adobe Lightroom Classic 10.3 (and earlier) are affected by a privilege escalation vulnerability in the Offline Lightroom Classic installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation to abuse this vulnerability.

Risk Information

Base Score

6.1

MODERATE

Vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.255

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2021-40776 are fixed in Adobe Lightroom 11.0	Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234