CVE-2024-45156
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2024-45156 is a NULL Pointer Dereference vulnerability that affects Animate versions 23.0.8 and earlier. This issue can lead to arbitrary code execution, allowing attackers to gain control of the affected system. However, it is important to note that exploitation of this vulnerability requires user interaction, meaning victims must open a maliciously crafted file for the attack to succeed. This vulnerability poses a significant risk to users, particularly those who open files from untrusted sources. Upgrading to the latest version of Animate is strongly recommended to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Adobe Animate
Affected Vendors
- Adobe