CVE-2024-20752
published 2024-03-18CVE-2024-20752: Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | bridge | < 13.0.6 | 13.0.6 |
| adobe | bridge | <= 14.0.1 | — |
| adobe | bridge | >= 14.0.0 < 14.0.2 | 14.0.2 |