CVE-2023-38211

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 9, 2023
Updated: Aug 14, 2023
CWE ID 416

Summary

CVE-2023-38211 is a newly disclosed vulnerability affecting Adobe Dimension version 3.4.9. This issue involves a Use After Free condition, which can lead to arbitrary code execution. The exploit requires user interaction, meaning a victim must open a specially crafted file to be vulnerable. Successful exploitation allows an attacker to execute malicious code in the context of the current user. This vulnerability poses a significant risk, and Adobe is encouraged to release a patch as soon as possible. Users are urged to avoid opening untrusted files until the vulnerability can be mitigated.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share