CVE-2024-34126

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 14, 2024

Updated: Aug 19, 2024

CWE ID 125

Summary

CVE-2024-34126 is a newly disclosed vulnerability affecting Dimension software versions 3.4.11 and older. This issue involves an out-of-bounds read vulnerability, enabling an attacker to access sensitive memory content. The attacker could potentially bypass Address Space Layout Randomization (ASLR) mitigations, increasing the risk of a successful exploit. Notably, user interaction is required for the vulnerability to be triggered, as the victim must open a malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Dimension

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vsos1M
https://www.cve.org/CVERecord?id=CVE-2024-34126
https://nvd.nist.gov/vuln/detail/CVE-2024-34126

Back to Vulnerability Database