CVE-2024-34138

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 14, 2024
Updated: Aug 15, 2024
CWE ID 476

Summary

CVE-2024-34138 is a NULL Pointer Dereference vulnerability that affects Adobe Illustrator versions 28.5 and 27.9.4, and earlier. This flaw could allow an attacker to crash the application by manipulating a malicious file, leading to a Denial of Service (DoS) condition. The vulnerability is triggered by user interaction, meaning that the victim must open the maliciously crafted file to be affected. This issue poses a risk to users who open unverified or suspicious files, potentially resulting in application downtime.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share