CVE-2020-24412

Summary

Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.

Affected Software

VendorProductVersion RangeStatus
AdobeIllustratorunspecified <= 24.1.2affected
AdobeIllustratorunspecified <= Noneaffected

Weaknesses

  • CWE-788: Access of Memory Location After End of Buffer (CWE-788)

ADP Enrichment

CVE Program Container

Additional References

References