Unrated severityNVD Advisory· Published Dec 13, 2023· Updated Aug 2, 2024
ZDI-CAN-22006: Adobe Illustrator JP2 File Parsing Use-After-Free Remote Code Execution Vulnerability
CVE-2023-47075
Description
Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected products
2<=28.0+ 1 more
- (no CPE)range: <=28.0
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/illustrator/apsb23-68.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.