CVE-2024-20796

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 11, 2024

CWE ID 125

Summary

CVE-2024-20796 is a newly disclosed vulnerability affecting Animate versions 23.0.4 and older. This issue represents an out-of-bounds read vulnerability, which enables unauthorized access to sensitive memory. By doing so, attackers can potentially bypass Address Space Layout Randomization (ASLR) mitigations. The exploitation of this vulnerability necessitates user interaction, making it crucial for users to avoid opening malicious files.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Animate

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vS52db
https://www.cve.org/CVERecord?id=CVE-2024-20796
https://nvd.nist.gov/vuln/detail/CVE-2024-20796

Back to Vulnerability Database