Unrated severityNVD Advisory· Published Nov 22, 2021· Updated Apr 23, 2025

Adobe Prelude M4A File Parsing Memory Corruption Arbitrary Code Execution

CVE-2021-40772

Description

Adobe Prelude version 10.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.

Affected products

Adobe Inc./Preludellm-fuzzy2 versions
<=10.1+ 1 more
- (no CPE)range: <=10.1
- (no CPE)range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

helpx.adobe.com/security/products/prelude/apsb21-96.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000