Out-of-Bounds Write Vulnerability in Adobe Bridge
CVE-2024-39386

7.8HIGH

Key Information:

Vendor: Adobe
Status: Bridge
Vendor: CVE Published:; 14 August 2024

Summary

An out-of-bounds write vulnerability exists in Adobe Bridge versions 13.0.8, 14.1.1 and earlier, which could potentially enable an attacker to execute arbitrary code in the context of the current user. The exploitation of this vulnerability necessitates that the targeted user interacts with a malicious file, emphasizing the need for vigilance against potentially harmful content. Patch updates are critical for users to mitigate this risk effectively.

References

https://helpx.adobe.com/security/products/bridge/apsb24-5...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 14, 2024

Collectors

NVD Database