CVE-2024-34124

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 14, 2024

Updated: Aug 19, 2024

CWE ID 787

Summary

CVE-2024-34124 is a newly disclosed vulnerability that impacts Dimension software versions 3.4.11 and older. This issue involves an out-of-bounds write vulnerability, which allows an attacker to write data beyond the intended memory space. Consequences of this flaw include arbitrary code execution, giving the attacker the ability to run malicious code in the context of the affected user. The exploitation of this vulnerability requires user interaction, meaning that a victim must open a maliciously crafted file for the attack to be successful.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Dimension

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vso7KS
https://www.cve.org/CVERecord?id=CVE-2024-34124
https://nvd.nist.gov/vuln/detail/CVE-2024-34124

Back to Vulnerability Database