CVE-2023-25862

Illustrator version 26.5.2 (and earlier) and 27.2.0 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:*

History

24 Mar 2023, 02:28

Type Values Removed Values Added
New CVE

Information

Published : 2023-03-22 17:15

Updated : 2024-02-04 23:37


NVD link : CVE-2023-25862

Mitre link : CVE-2023-25862

CVE.ORG link : CVE-2023-25862


JSON object : View

Products Affected

adobe

  • illustrator
CWE
CWE-125

Out-of-bounds Read