CVE-2024-49553
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2024-49553 is a newly disclosed vulnerability affecting Media Encoder versions 25.0 and 24.6.3, and older. This out-of-bounds write issue allows an attacker to execute arbitrary code in the context of the current user. The exploitation of this vulnerability necessitates user interaction, requiring a victim to open a maliciously crafted file. Successful exploitation could lead to significant security risks, including potential data theft or system compromise. Users are strongly advised to update their Media Encoder software to a patched version as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.