CVE-2023-29321

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jun 15, 2023

Updated: Jun 27, 2023

CWE ID 416

Summary

CVE-2023-29321 is a Use After Free vulnerability affecting Adobe Animate versions 22.0.9 and earlier, as well as 23.0.1 and earlier. This issue allows for arbitrary code execution in the context of the current user. The vulnerability can be exploited if a victim opens a malicious file, making user interaction necessary. Adobe Animate users are advised to update to the latest version to mitigate this risk. This flaw could potentially lead to serious consequences, including unauthorized access to sensitive information or system takeover.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Animate

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/roDlKs
https://www.cve.org/CVERecord?id=CVE-2023-29321
https://nvd.nist.gov/vuln/detail/CVE-2023-29321

Back to Vulnerability Database