CVE-2023-47067

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 17, 2023
Updated: Nov 22, 2023
CWE ID 125

Summary

CVE-2023-47067 is a critical out-of-bounds read vulnerability affecting Adobe After Effects versions 24.0.2 and earlier, as well as 23.6 and earlier. This issue arises during the parsing of a specially crafted file, causing the software to read beyond the allocated memory structure. An attacker could potentially exploit this vulnerability to execute code with the privileges of the current user. However, it should be noted that exploitation requires user interaction as the victim must open a malicious file for the vulnerability to be triggered.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share