First published: Tue Dec 10 2024(Updated: )
Bridge versions 14.1.3, 15.0 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Adobe Bridge CC | <14.1.4 | |
Adobe Bridge CC | =15.0 | |
Any of | ||
macOS | ||
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-53955 has a high severity level due to its potential for arbitrary code execution.
To mitigate CVE-2024-53955, users should upgrade Adobe Bridge to version 14.1.4 or later.
CVE-2024-53955 affects Adobe Bridge versions 14.1.3 and 15.0 on both macOS and Windows platforms.
Exploitation of CVE-2024-53955 could lead to arbitrary code execution in the context of the user running Adobe Bridge.
Yes, exploitation of CVE-2024-53955 requires user interaction as the victim must open a malicious file.