CVE-2022-34235 HIGH

CVE-2022-34235: Adobe Premiere Elements Uncontrolled Search Path Element Privilege Escalation

Vendor Adobe
Product Premiere Elements
Weakness CWE-427
Published August 11, 2022
Last update April 23, 2025

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Adobe Premiere Elements version 2020v20 (and earlier) is affected by an Uncontrolled Search Path Element which could lead to Privilege Escalation. An attacker could leverage this vulnerability to obtain admin using an existing low-privileged user. Exploitation of this issue does not require user interaction.

Key dates

02Disclosure timeline

August 11, 2022 CVE published
April 23, 2025 Record updated