Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Metrics
Affected Vendors & Products
References
History
Wed, 04 Dec 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Adobe
Adobe animate Apple Apple macos Microsoft Microsoft windows |
|
CPEs | cpe:2.3:a:adobe:animate:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Adobe
Adobe animate Apple Apple macos Microsoft Microsoft windows |
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2024-04-11T10:53:15.210Z
Updated: 2024-08-01T22:06:35.708Z
Reserved: 2023-12-04T16:52:22.992Z
Link: CVE-2024-20797
Vulnrichment
Updated: 2024-08-01T22:06:35.708Z
NVD
Status : Analyzed
Published: 2024-04-11T11:15:48.130
Modified: 2024-12-04T15:01:17.957
Link: CVE-2024-20797
Redhat
No data.