Lucene search

PRIOn knowledge basePRION:CVE-2023-44329

HistoryNov 16, 2023 - 3:15 p.m.

Design/Logic Flaw

2023-11-1615:15:00

PRIOn knowledge base

www.prio-n.com

adobe bridge

logic flaw

uninitialized pointer

vulnerability

sensitive memory

aslr

user interaction

nvd

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

40.5%

JSON

Adobe Bridge versions 13.0.4 (and earlier) and 14.0.0 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CPENameOperatorVersion
bridgele13.0.4
bridgeeq14.0.0

CPE	Name	Operator	Version
	bridge	le	13.0.4
	bridge	eq	14.0.0

References

helpx.adobe.com/security/products/bridge/apsb23-57.html