CVE-2020-9551: 
Adobe Bridge vulnerability analysis and mitigation

Adobe Bridge version 10.0 was found to contain an out-of-bounds write vulnerability (CVE-2020-9551). The vulnerability was discovered on December 6, 2019, and publicly disclosed on March 19, 2020. This security flaw specifically affects the GIF file parsing functionality in Adobe Bridge CC (ZDI Advisory).

The vulnerability is classified as an out-of-bounds write (CWE-787) that occurs during the handling of GIF files. The specific issue stems from inadequate validation of user-supplied data, which can result in a write operation beyond the bounds of an allocated buffer. The vulnerability has received a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (NVD).

Successful exploitation of this vulnerability could lead to arbitrary code execution in the context of the current process. The vulnerability affects the integrity, confidentiality, and availability of the system, as indicated by the high impact scores across all three metrics in the CVSS rating (ZDI Advisory).

Adobe has released a security update to address this vulnerability. Users are advised to apply the patch available through the official Adobe security advisory (Adobe Advisory).