CVE-2023-47066

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 17, 2023

Updated: Nov 22, 2023

CWE ID 125

Summary

CVE-2023-47066 is a newly discovered vulnerability that affects Adobe After Effects versions 24.0.2 and earlier, as well as 23.6 and earlier. This issue is classified as an out-of-bounds read vulnerability, which means that the software fails to properly check boundaries when reading data. A maliciously crafted file can cause After Effects to read past the end of an allocated memory structure, potentially leading to code execution in the context of the current user. To exploit this vulnerability, an attacker needs the victim to open the malicious file, making it a user-interactive threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tNRxKv
https://www.cve.org/CVERecord?id=CVE-2023-47066
https://nvd.nist.gov/vuln/detail/CVE-2023-47066

Back to Vulnerability Database

CVE-2023-47066

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations