Use After Free Vulnerability in Adobe Premiere Pro
CVE-2026-34638

7.8HIGH

Key Information:

Vendor: Adobe
Status: Premiere Pro
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-34638?

Adobe Premiere Pro versions 26.0.2, 25.6.4, and earlier contain a use-after-free vulnerability that could be exploited to execute arbitrary code with user privileges. The flaw requires a user to open a specially crafted malicious file, which triggers the vulnerability and potentially compromises the system. Users of affected versions should remain vigilant and apply necessary updates to ensure their systems are secured against this threat.

Affected Version(s)

Premiere Pro 0 <= 25.6.4

References

https://helpx.adobe.com/security/products/premiere_pro/ap...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Mar 30, 2026

CVE-2026-34638 Data

JSON