CVE-2012-2023

CWE-119 — Buffer Overflow CWE-2037 documents7 sources

Severity

10.0CRITICAL

EPSS

13.4%

top 5.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Illustrator Cs5.5 Adobe Illustrator

Timeline

PublishedMay 9

Latest updateMar 12

Description

Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0780, CVE-2012-2024, CVE-2012-2025, and CVE-2012-2026.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDadobe/illustrator_cs5.515

▶NVDadobe/illustrator13 versions+12

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

ginuerzh/gost vulnerable to Timing Attack↗2023-05-22

▶

GHSA

GHSA-5c6j-76f2-jq69: Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a di↗2022-05-17

▶

CVEList

CVE-2012-2023: Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a di↗2012-05-09

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft patches Windows Kernel zero-day exploited since 2023↗2025-03-12

▶

Threat Intel

Opal Sleet

▶