CVE-2024-49538
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 787
Summary
CVE-2024-49538 is a newly disclosed vulnerability affecting Adobe Illustrator versions 29.0.0 and 28.7.2, and possibly older releases. This issue involves an out-of-bounds write vulnerability, which allows an attacker to execute arbitrary code within the application. successful exploitation of this weakness requires the victim to open a maliciously crafted file, making it a user-interactive exploit. Users are advised to update their Illustrator software to the latest version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Illustrator
Affected Vendors
- Adobe