CVE-2023-44325
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 17, 2023
Updated: Nov 22, 2023
CWE ID 125
Summary
CVE-2023-44325 is a newly disclosed vulnerability affecting Adobe Animate versions 23.0.2 and earlier. This issue involves an out-of-bounds read vulnerability that could potentially expose sensitive memory content. An attacker, given the right conditions, may exploit this vulnerability to bypass Address Space Layout Randomization (ASLR) protections. Notably, this vulnerability requires user interaction, meaning a victim must open a specially crafted file for an attack to be executed.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Animate
Affected Vendors
- Adobe