CVE-2023-47072
CVSS 3.1 Score 3.3 of 10 (low)
Details
Published Nov 17, 2023
Updated: Nov 22, 2023
CWE ID 824
Summary
CVE-2023-47072 is a newly disclosed vulnerability affecting Adobe After Effects versions 24.0.2 and earlier, as well as 23.6 and earlier. This issue involves an Access of Uninitialized Pointer vulnerability, where sensitive memory can be disclosed. An attacker could potentially use this flaw to bypass mitigations like Address Space Layout Randomization (ASLR). To exploit this vulnerability, a user must first open a malicious file.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share