Lucene search

China National Vulnerability DatabaseCNVD-2023-07320

HistorySep 19, 2022 - 12:00 a.m.

Adobe Illustrator out-of-bounds read vulnerability (CNVD-2023-07320)

2022-09-1900:00:00

China National Vulnerability Database

www.cnvd.org.cn

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

0.003 Low

EPSS

Percentile

68.5%

JSON

Adobe Illustrator is a software released by Adobe Systems, Inc. for graphics production. An out-of-bounds read vulnerability exists in Adobe Illustrator, which can be exploited by attackers to bypass mitigations such as ASLR and cause sensitive memory leaks.

CPENameOperatorVersion
adobe adobe illustrator 2022le26.4
adobe adobe illustrator 2021le25.4.7

CPE	Name	Operator	Version
	adobe adobe illustrator 2022	le	26.4
	adobe adobe illustrator 2021	le	25.4.7

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

0.003 Low

EPSS

Percentile

68.5%

JSON

Related for CNVD-2023-07320