CVE-2024-49553

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 787

Summary

CVE-2024-49553 is a newly disclosed vulnerability affecting Media Encoder versions 25.0 and 24.6.3, and older. This out-of-bounds write issue allows an attacker to execute arbitrary code in the context of the current user. The exploitation of this vulnerability necessitates user interaction, requiring a victim to open a maliciously crafted file. Successful exploitation could lead to significant security risks, including potential data theft or system compromise. Users are strongly advised to update their Media Encoder software to a patched version as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share