CVE-2023-44329

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Dec 4, 2023

CWE ID 824

Summary

CVE-2023-44329 is a vulnerability affecting Adobe Bridge versions 13.0.4 and earlier, as well as 14.0.0 and earlier. This issue involves an Access of Uninitialized Pointer, which could potentially result in the disclosure of sensitive memory. An attacker, given the right conditions, might exploit this vulnerability to bypass Address Space Layout Randomization (ASLR), a common security mitigation. To trigger the exploitation, a victim must open a specially crafted malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Bridge

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s0thFm
https://www.cve.org/CVERecord?id=CVE-2023-44329
https://nvd.nist.gov/vuln/detail/CVE-2023-44329

Back to Vulnerability Database