Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
History

Wed, 04 Dec 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Adobe
Adobe animate
Apple
Apple macos
Microsoft
Microsoft windows
CPEs cpe:2.3:a:adobe:animate:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Adobe
Adobe animate
Apple
Apple macos
Microsoft
Microsoft windows

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2024-04-11T10:53:15.210Z

Updated: 2024-08-01T22:06:35.708Z

Reserved: 2023-12-04T16:52:22.992Z

Link: CVE-2024-20797

cve-icon Vulnrichment

Updated: 2024-08-01T22:06:35.708Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-11T11:15:48.130

Modified: 2024-12-04T15:01:17.957

Link: CVE-2024-20797

cve-icon Redhat

No data.