Vulnerabilities > CVE-2024-30294 - Out-of-bounds Write vulnerability in Adobe Animate

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

adobe

CWE-787

NVD

Published: 2024-05-16

Updated: 2024-12-02

Summary

Animate versions 24.0.2, 23.0.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe Animate 23.0.0 Adobe Animate 23.0.1 Adobe Animate 23.0.2 Adobe Animate 24.0.0	4
OS	Apple Apple Macos -	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://helpx.adobe.com/security/products/animate/apsb24-36.html
https://helpx.adobe.com/security/products/animate/apsb24-36.html