CVE-2021-40776

MEDIUM

Adobe Lightroom Classic <10.3 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Adobe Lightroom Classic 10.3 (and earlier) are affected by a privilege escalation vulnerability in the Offline Lightroom Classic installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation to abuse this vulnerability.

References (1)

Core 1

Scores

CVSS v3 6.1
EPSS 0.0052
EPSS Percentile 40.7%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-379
Status published
Products (1)
adobe/lightroom < 10.4
Published Jun 15, 2022
Tracked Since Feb 18, 2026