CVE-2024-41858

Summary

CVE-2024-41858 is a newly disclosed vulnerability affecting Adobe InCopy versions 18.5.2 and earlier, as well as InCopy 19.4. This issue involves an Integer Overflow or Wraparound flaw that can be exploited to execute arbitrary code in the context of the current user. Exploitation requires the victim to open a maliciously crafted file, making this a user-interactive vulnerability. Successful exploitation could result in significant security risks, including unauthorized system access or data theft. Adobe is urging users to update to the latest versions of InCopy to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.