CVE-2024-20798

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 11, 2024

CWE ID 125

Summary

CVE-2024-20798 is a newly disclosed vulnerability affecting Adobe Illustrator versions 28.3 and 27.9.2, and possibly older releases. This out-of-bounds read issue allows an attacker to read sensitive memory content, potentially bypassing Address Space Layout Randomization (ASLR) protections. To exploit this vulnerability, a user must open a specially crafted malicious file. Successful exploitation could lead to significant information disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vS5tEL
https://www.cve.org/CVERecord?id=CVE-2024-20798
https://nvd.nist.gov/vuln/detail/CVE-2024-20798

Back to Vulnerability Database

CVE-2024-20798

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations