CVE-2024-20756
published 2024-03-18CVE-2024-20756: Bridge versions 13.0.5, 14.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Bridge versions 13.0.5, 14.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | bridge | < 13.0.6 | 13.0.6 |
| adobe | bridge | <= 14.0.1 | — |
| adobe | bridge | >= 14.0.0 < 14.0.2 | 14.0.2 |
| github.com | minio_minio | >= 0.0.0-20220623162515-580d9db85e04 < 0.0.0-20241213221912-68b004a48f41 | 0.0.0-20241213221912-68b004a48f41 |