CVE-2023-47059: 
Adobe Premiere Pro vulnerability analysis and mitigation

CVE-2023-47059 is an out-of-bounds read vulnerability affecting Adobe Premiere Pro version 24.0 (and earlier) and 23.6 (and earlier). The vulnerability was disclosed on November 14, 2023, and involves parsing crafted files which could result in reading past the end of an allocated memory structure (Adobe Advisory, NVD).

The vulnerability is classified as an out-of-bounds read (CWE-125) issue that occurs when parsing a crafted file. It has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating local attack vector, low attack complexity, no privileges required, and user interaction required (NVD).

If successfully exploited, this vulnerability could allow an attacker to execute code in the context of the current user. The vulnerability could result in a read past the end of an allocated memory structure, potentially leading to information disclosure or code execution (NVD).

Adobe has released security updates to address this vulnerability. Users are advised to update Adobe Premiere Pro to the latest version. The vulnerability affects version 24.0 and earlier, as well as version 23.6 and earlier (Adobe Advisory).