Out-of-Bounds Read Vulnerability in Adobe After Effects
CVE-2024-47444

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: After Effects
Vendor: CVE Published:; 12 November 2024

Summary

Adobe After Effects is affected by a vulnerability that allows for an out-of-bounds read. This issue could potentially lead to the disclosure of sensitive memory data. Attackers can exploit this vulnerability by enticing users to open specially crafted malicious files, enabling them to bypass security mechanisms such as Address Space Layout Randomization (ASLR). Users of affected versions should apply patches promptly to mitigate any risks associated with this vulnerability.

References

https://helpx.adobe.com/security/products/after_effects/a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2024