CVE-2024-52985
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 191
Summary
CVE-2024-52985 is a newly disclosed vulnerability affecting Animate versions 23.0.8 and older, as well as 24.0.5. This issue involves an Integer Underflow vulnerability, which can lead to arbitrary code execution. This occurs when the software processes integers that are too large, causing them to "wrap around" and assume incorrect values. To exploit this vulnerability, a user must open a maliciously crafted file, placing them at risk of code injection and potential system compromise.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Animate
Affected Vendors
- Adobe