CVE-2024-20764

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 18, 2024

CWE ID 125

Summary

CVE-2024-20764 is a newly disclosed vulnerability affecting Animate software versions 24.0 and earlier, including 23.0.3. This issue represents an out-of-bounds read vulnerability, which means data is read from unintended memory locations. Malicious actors can exploit this flaw, potentially gaining access to sensitive data. Notably, attackers can bypass mitigations like Address Space Layout Randomization (ASLR) with this vulnerability. The exploitation process necessitates user interaction, requiring the victim to open a malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Animate

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/u2-yis
https://www.cve.org/CVERecord?id=CVE-2024-20764
https://nvd.nist.gov/vuln/detail/CVE-2024-20764

Back to Vulnerability Database