CVE-2024-20715
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-20715 is a newly disclosed vulnerability affecting Adobe Substance 3D Stager versions 2.1.3 and earlier. This issue involves an out-of-bounds read vulnerability, which could potentially allow an attacker to access sensitive memory content. By exploiting this weakness, cybercriminals may bypass mitigations like Address Space Layout Randomization (ASLR), making it easier for them to launch attacks. However, it's important to note that user interaction is required for an attacker to successfully exploit this vulnerability, as they would need the victim to open a malicious file.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Adobe Substance 3D Stager
Affected Vendors
- Adobe