CVE-2024-45155
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2024-45155 is a newly disclosed vulnerability affecting Animate versions 23.0.8 and earlier. This issue involves an Access of Uninitialized Pointer, making it possible for attackers to execute arbitrary code in the user's context. To exploit this vulnerability, a victim must open a specially crafted file, requiring user interaction. The uninitialized pointer may lead to memory corruption, potentially resulting in code injection and subsequent system compromise. Users are strongly advised to update their Animate software as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Adobe Animate
Affected Vendors
- Adobe