CVE-2021-42726: 
Adobe Media Encoder vulnerability analysis and mitigation

Adobe Bridge version 11.1.1 and earlier versions were found to contain a memory corruption vulnerability (CVE-2021-42726) that stems from insecure handling of malicious M4A files. The vulnerability was disclosed on October 19, 2021, and affects the Adobe Bridge software suite (CVE Details, NVD).

The vulnerability is classified as a memory corruption issue, specifically an 'Access of Memory Location After End of Buffer' (CWE-788). It has received a CVSS 3.0 score of 7.7, indicating a high severity level with the following vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/I:H/AV:L/AC:L/S:U/PR:N/A:H/UI:R/C:H (ManageEngine).

If successfully exploited, this vulnerability could lead to arbitrary code execution in the context of the current user. The impact is considered critical due to the potential for complete system compromise, though user interaction is required for successful exploitation (NVD).

Adobe has addressed this vulnerability in an update to Adobe Bridge. Users are advised to update their software to the latest version to mitigate this security risk (Adobe Security).