CVE-2024-53954

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 191

Summary

CVE-2024-53954 is a recently disclosed vulnerability affecting Animate versions 23.0.8 and earlier. This issue involves an Integer Underflow, which can result in arbitrary code execution. Notably, exploitation of this vulnerability requires user interaction, meaning a victim must open a maliciously crafted file for the attack to succeed. The Integer Underflow can lead to integer values wrapping around, causing unexpected behavior and potentially allowing an attacker to execute arbitrary code. The severity of this vulnerability is high, as successful exploitation can result in significant security impacts. Users are advised to update to the latest version of Animate as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share