CVE-2021-40792: 
Adobe Premiere Pro vulnerability analysis and mitigation

Adobe Premiere Pro version 15.4.1 and earlier versions were found to contain a memory corruption vulnerability that could be triggered through the insecure handling of malicious files. The vulnerability was assigned CVE-2021-40792 and was disclosed in October 2021. User interaction is required to exploit this vulnerability (NVD, Adobe Security).

The vulnerability is classified as a memory corruption issue, specifically an 'Access of Memory Location After End of Buffer' vulnerability that could potentially lead to arbitrary code execution. The vulnerability has been assigned CWE-788 and CWE-119 classifications, indicating memory access issues (Threatpost, NVD CNA).

If successfully exploited, this vulnerability could result in arbitrary code execution in the context of the current user. The execution would occur with the same privileges as the user running the Adobe Premiere Pro application (NVD).

Adobe addressed this vulnerability in an out-of-band security update released in October 2021. Users are advised to update to a version newer than 15.4.1 to protect against this vulnerability (Adobe Security).

The vulnerability was part of a larger Adobe security update that addressed 92 vulnerabilities across 14 products. Security researchers from TopSec Alpha Team and Trend Micro's Zero-Day Initiative were credited with discovering various vulnerabilities in this update batch (Threatpost).