CVE-2024-49536

Published Nov 15, 2024

Last updated 2 days ago

CVSS medium 5.5

Overview

Description: Audition versions 23.6.9, 24.4.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Source: psirt@adobe.com
NVD status: Received

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Severity: MEDIUM

Weaknesses

psirt@adobe.com: CWE-125

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score: 1

CVE-2024-49536 Audition versions 23.6.9, 24.4.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could … https://t.co/sMfYhBFGnd
@CVEnew
15 Nov 2024
220 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References