CVE-2025-43547

📊 7.8 HIGH⚡ 0.0%🎯 0 exploits

📅 Published May 13, 2025

📋 Status: Analyzed

Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

4 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	adobe	bridge	≥ 14.0.0 ∧ < 14.1.7	Vulnerable	cpe:2.3:a:adobe:bridge::::::::
📱App	adobe	bridge	≥ 15.0 ∧ < 15.0.4	Vulnerable	cpe:2.3:a:adobe:bridge::::::::
💻OS	apple	macos	All versions	Not Vulnerable	cpe:2.3:o:apple:macos:-:::::::*
💻OS	microsoft	windows	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows:-:::::::*

📱

adobe / bridge

Application

Vulnerable

Version: ≥ 14.0.0 ∧ < 14.1.7

CPE:

cpe:2.3:a:adobe:bridge:*:*:*:*:*:*:*:*

📱

adobe / bridge

Application

Vulnerable

Version: ≥ 15.0 ∧ < 15.0.4

CPE:

cpe:2.3:a:adobe:bridge:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

💻

microsoft / windows

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Metrics

7.8 HIGHCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

NONE

User Interaction:

REQUIRED

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

7.8 (HIGH)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)6.3th percentile

Last updated: Oct 31, 2025

Exploitation probability within 30 days

Published Date

May 13, 2025 (5 months ago)

Last Modified

May 15, 2025 (5 months ago)

Security Weaknesses1

CWE-190

References2

NVDgeneral