Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by uploading a malicious file which can be automatically processed or executed by the system. Exploitation of this issue requires user interaction.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/framemaker/apsb24-82.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
18 Oct 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
First Time |
Adobe
Adobe framemaker Microsoft windows Microsoft |
|
CPE | cpe:2.3:a:adobe:framemaker:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
References | () https://helpx.adobe.com/security/products/framemaker/apsb24-82.html - Vendor Advisory |
10 Oct 2024, 12:51
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
09 Oct 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-09 15:15
Updated : 2024-10-18 14:15
NVD link : CVE-2024-47423
Mitre link : CVE-2024-47423
CVE.ORG link : CVE-2024-47423
JSON object : View
Products Affected
microsoft
- windows
adobe
- framemaker
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type