CVE-2024-20793

Summary

CVE-2024-20793 is a newly disclosed vulnerability affecting Adobe Illustrator versions 28.4 and 27.9.3, and possibly older releases. This issue constitutes an out-of-bounds read vulnerability, meaning it allows unauthorized read access to memory beyond designated boundaries. Such uncontrolled reads could potentially expose sensitive data. An attacker could exploit this vulnerability to bypass Address Space Layout Randomization (ASLR) mitigations, making it easier to execute reliable attacks. However, exploitation of this issue requires user interaction, as a victim must open a maliciously crafted file for the vulnerability to be triggered.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.