Out-of-Bounds Write Vulnerability in Adobe Illustrator
CVE-2024-45114

7.8HIGH

Key Information:

Vendor: Adobe
Status: Illustrator
Vendor: CVE Published:; 12 November 2024

Summary

Adobe Illustrator versions 28.7.1 and earlier contain an out-of-bounds write vulnerability that may allow an attacker to execute arbitrary code in the context of the current user. Successful exploitation of this vulnerability requires the target user to open a specially crafted file, which can lead to serious security breaches. Users of Adobe Illustrator are advised to exercise caution when opening files from untrusted sources and to update to the latest version to mitigate potential risks.

References

https://helpx.adobe.com/security/products/illustrator/aps...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2024