CVE-2024-34126

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 14, 2024

Updated: Aug 19, 2024

CWE ID 125

Summary

CVE-2024-34126 is a newly disclosed vulnerability affecting Dimension software versions 3.4.11 and older. This issue involves an out-of-bounds read vulnerability, enabling an attacker to access sensitive memory content. The attacker could potentially bypass Address Space Layout Randomization (ASLR) mitigations, increasing the risk of a successful exploit. Notably, user interaction is required for the vulnerability to be triggered, as the victim must open a malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Dimension

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vsos1M
https://www.cve.org/CVERecord?id=CVE-2024-34126
https://nvd.nist.gov/vuln/detail/CVE-2024-34126

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Know What Matters

For Customers

For Partners