CVE-2023-47054

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 16, 2023
Updated: Dec 4, 2023
CWE ID 824

Summary

CVE-2023-47054 is a vulnerability affecting Adobe Audition versions 24.0 and earlier, as well as version 23.6.1 and earlier. This vulnerability, categorized as CWE-824 (Access of Uninitialized Pointer), could potentially lead to the disclosure of sensitive memory. Exploiting this vulnerability requires user interaction, specifically opening a malicious file. The impact score for this vulnerability is 3.6 out of 10, indicating a medium-level risk with high potential for confidentiality impact. It has a base score of 5.5 out of 10 and does not require any privileges or complex attack vectors to exploit it. The affected products include eJ-ABX, lEMfZo, mMSMCC, eQLqsc, and trfa0z. It is recommended to update Adobe Audition to the latest version in order to remediate this vulnerability and protect against potential attacks that bypass mitigations such as ASLR (Address Space Layout Randomization).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-47054 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options