Dimension@* Security Vulnerabilities and Issues — Page 2 of Dimension@* CVE List

7.8CVSS7.7AI score0.0014EPSS

CVE-2023-25898

Adobe Dimension versions 3.4.7 (and earlier) is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.7AI score0.00116EPSS

CVE-2023-25899

Adobe Dimension versions 3.4.7 (and earlier) is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0012EPSS

CVE-2023-26330

Adobe Dimension versions 3.4.7 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

5.5CVSS4.9AI score0.00023EPSS

CVE-2023-26341

Adobe Dimension versions 3.4.7 (and earlier) is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim ...

5.5CVSS5.2AI score0.00023EPSS

CVE-2023-26344

Adobe Dimension versions 3.4.7 (and earlier) is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in t...

5.5CVSS5.2AI score0.00032EPSS

CVE-2023-26350

5.5CVSS4.9AI score0.0007EPSS

CVE-2023-26353

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-34125

Dimension versions 3.4.11 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must o...

5.5CVSS5.1AI score0.00078EPSS

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-34126

5.5CVSS5.1AI score0.00078EPSS

CVE•added 2021/12/20 9:15 p.m.•47 views

CVE-2021-44181

Adobe Dimension versions 3.4.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious GIF file.

9.3CVSS6AI score0.0208EPSS

CVE•added 2022/10/14 8:15 p.m.•47 views

CVE-2022-38447

7.8CVSS7.8AI score0.00697EPSS

CVE•added 2023/04/12 8:15 p.m.•47 views

CVE-2023-26374

Adobe Dimension version 3.4.8 (and earlier) is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim m...

CVE•added 2021/12/20 9:15 p.m.•46 views

CVE-2021-44183

Adobe Dimension versions 3.4.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

4.3CVSS3.1AI score0.01737EPSS

CVE•added 2022/10/14 8:15 p.m.•46 views

CVE-2022-38441

Adobe Dimension versions 3.4.5 is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation o...

7.8CVSS7.5AI score0.00142EPSS

CVE•added 2023/03/28 8:15 p.m.•46 views

CVE-2023-25882

7.8CVSS7.7AI score0.00148EPSS

CVE•added 2023/03/28 8:15 p.m.•46 views

CVE-2023-25896

7.8CVSS7.7AI score0.00116EPSS

CVE•added 2023/03/28 8:15 p.m.•46 views

CVE-2023-25897

7.8CVSS7.7AI score0.00148EPSS

CVE•added 2023/04/12 8:15 p.m.•46 views

CVE-2023-26375

CVE•added 2021/08/20 7:15 p.m.•45 views

CVE-2021-28595

Adobe Dimension version 3.4 (and earlier) is affected by an Uncontrolled Search Path Element element. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a ...

9.3CVSS7.7AI score0.05686EPSS

7.8CVSS7.5AI score0.00157EPSS

CVE-2023-25902

Adobe Dimension versions 3.4.7 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. ...

7.8CVSS7.5AI score0.00157EPSS

CVE-2023-26333

5.5CVSS4.9AI score0.00023EPSS

CVE-2023-26342

5.5CVSS4.9AI score0.00032EPSS

CVE-2023-26354

CVE•added 2023/04/12 8:15 p.m.•45 views

CVE-2023-26404

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-34124

Dimension versions 3.4.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00043EPSS

CVE•added 2023/03/28 8:15 p.m.•44 views

CVE-2023-25903

Adobe Dimension versions 3.4.7 (and earlier) is affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00114EPSS

CVE•added 2023/03/28 8:15 p.m.•44 views

CVE-2023-26327

7.8CVSS7AI score0.00032EPSS

CVE•added 2023/03/28 8:15 p.m.•44 views

CVE-2023-26332

7.8CVSS7AI score0.00034EPSS

CVE•added 2024/08/14 3:15 p.m.•44 views

CVE-2024-20790

5.5CVSS5.1AI score0.00078EPSS

CVE•added 2023/03/28 8:15 p.m.•43 views

CVE-2023-26331

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/03/28 8:15 p.m.•43 views

CVE-2023-26334

Adobe Dimension versions 3.4.7 (and earlier) is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.7AI score0.0012EPSS

CVE•added 2023/04/12 8:15 p.m.•43 views

CVE-2023-26372

Adobe Dimension version 3.4.8 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0012EPSS

CVE•added 2023/04/12 8:15 p.m.•43 views

CVE-2023-26373

7.8CVSS7.8AI score0.0012EPSS

CVE•added 2023/04/12 8:15 p.m.•43 views

CVE-2023-26378

5.5CVSS5.2AI score0.00034EPSS

CVE•added 2024/08/14 3:15 p.m.•43 views

CVE-2024-20789

Dimension versions 3.4.11 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0005EPSS

CVE•added 2023/03/28 8:15 p.m.•42 views

CVE-2023-26339

5.5CVSS4.9AI score0.00032EPSS

CVE•added 2023/04/12 8:15 p.m.•42 views

CVE-2023-26371

Adobe Dimension version 3.4.8 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. E...

7.8CVSS7.5AI score0.00157EPSS

CVE•added 2023/08/09 9:15 a.m.•42 views

CVE-2023-38213

Adobe Dimension version 3.4.9 is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a mal...

5.5CVSS5.3AI score0.00034EPSS

CVE•added 2024/10/09 9:15 a.m.•42 views

CVE-2024-45146

Dimension versions 4.0.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00048EPSS

CVE•added 2023/03/28 8:15 p.m.•41 views

CVE-2023-26343

5.5CVSS4.9AI score0.00023EPSS

CVE•added 2023/03/28 8:15 p.m.•41 views

CVE-2023-26352

5.5CVSS4.9AI score0.00032EPSS

CVE•added 2023/04/12 8:15 p.m.•41 views

CVE-2023-26382

CVE•added 2023/04/12 8:15 p.m.•41 views

CVE-2023-26400

CVE•added 2025/05/13 9:16 p.m.•41 views

CVE-2025-43572

Dimension versions 4.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00042EPSS

CVE•added 2023/04/12 8:15 p.m.•40 views

CVE-2023-26376