CVSS 3.1 Score 5.5 of 10 (medium)


Published Apr 10, 2024
CWE ID 125


CVE-2024-20737 is a vulnerability affecting Adobe After Effects versions 24.1, 23.6.2, and earlier. It is classified as an out-of-bounds read vulnerability that can result in the disclosure of sensitive memory. Exploiting this vulnerability requires user interaction, where a victim must open a malicious file. The potential danger to an organization lies in the possibility of an attacker bypassing mitigations like ASLR and gaining access to sensitive information. The base severity of this vulnerability is rated as MEDIUM, with a base score of 5.5, and the confidentiality impact is classified as HIGH. Adobe has not provided specific information on how to remediate this vulnerability at this time.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20737 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options