How severe is CVE-2024-20791?

CVE-2024-20791 has a CVSS v3 score of 7.8 (HIGH).

CVE-2024-20791

7.8HIGH

Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structur

Publicado: 5/16/2024Atualizado: 12/4/2024

Descrição

Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Análise IADesenvolvido por IA

Produtos Afetados

adobeillustrator

applemacos

microsoftwindows

Referências

https://helpx.adobe.com/security/products/illustrator/apsb24-30.html
Vendor Advisory
https://helpx.adobe.com/security/products/illustrator/apsb24-30.html
Vendor Advisory