CVE-2024-52987

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 191

Summary

CVE-2024-52987 is a newly disclosed vulnerability affecting Animate versions 23.0.8 and earlier. This issue involves an Integer Underflow, which can result in arbitrary code execution in the context of the current user. Notably, exploitation of this vulnerability requires user interaction, meaning a victim must open a specially crafted file to be at risk. This vulnerability could potentially lead to serious consequences if not addressed promptly. Users are strongly advised to update to the latest version of Animate as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share