CVE-2024-49551
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 787
Summary
CVE-2024-49551 is a newly identified vulnerability that impacts Media Encoder versions 25.0 and 24.6.3, and older releases. This issue constitutes an out-of-bounds write vulnerability, which means that data is being written beyond the intended boundaries of a memory buffer. Consequently, an attacker could potentially inject arbitrary code, gaining execution privileges equivalent to the current user. However, for an attack to be successful, the victim must open a specially crafted file, indicating a degree of user interaction is required.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share