nvd-json-data-feeds/CVE-2022/CVE-2022-342xx/CVE-2022-34235.json

{
  "id": "CVE-2022-34235",
  "sourceIdentifier": "psirt@adobe.com",
  "published": "2022-08-11T15:15:12.413",
  "lastModified": "2022-08-13T02:08:34.083",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "Adobe Premiere Elements version 2020v20 (and earlier) is affected by an Uncontrolled Search Path Element which could lead to Privilege Escalation. An attacker could leverage this vulnerability to obtain admin using an existing low-privileged user. Exploitation of this issue does not require user interaction."
    },
    {
      "lang": "es",
      "value": "Adobe Premiere Elements versiones 2020v20 (y anteriores) est\u00e1 afectada por un elemento de ruta de b\u00fasqueda no controlada que podr\u00eda conllevar a una elevaci\u00f3n de privilegios. Un atacante podr\u00eda aprovechar esta vulnerabilidad para obtener la administraci\u00f3n usando un usuario poco privilegiado. No es requerida una interacci\u00f3n del usuario para la explotaci\u00f3n de este problema"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "psirt@adobe.com",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9
      }
    ]
  },
  "weaknesses": [
    {
      "source": "psirt@adobe.com",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-427"
        }
      ]
    }
  ],
  "configurations": [
    {
      "operator": "AND",
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:adobe:premiere_elements:*:*:*:*:*:*:*:*",
              "versionEndIncluding": "2020.20",
              "matchCriteriaId": "173C13EA-0817-417D-BE79-BC63C903D9C8"
            }
          ]
        },
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": false,
              "criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E"
            },
            {
              "vulnerable": false,
              "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://helpx.adobe.com/security/products/premiere_elements/apsb22-43.html",
      "source": "psirt@adobe.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ]
    }
  ]
}