CVSS 3.1 Score 5.5 of 10 (medium)


Published Jan 10, 2024
Updated: Jan 12, 2024
CWE ID 125


CVE-2024-20713 is an out-of-bounds read vulnerability affecting Adobe Substance 3D Stager versions 2.1.3 and earlier. This vulnerability can lead to the disclosure of sensitive memory and allows an attacker to bypass mitigations like ASLR. Exploiting this issue requires user interaction, specifically opening a malicious file. The base severity is rated as MEDIUM, with a base score of 5.5, indicating a potential danger to organizations due to the high impact on confidentiality. Adobe has not provided any remediation steps or analysis description for this vulnerability at the moment.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20713 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options