Adobe Illustrator up to 24.1.2 memory corruption

A vulnerability was found in Adobe Illustrator up to 24.1.2 (Image Processing Software). It has been classified as critical. Affected is an unknown function. Upgrading eliminates this vulnerability.

Field	06/26/2020 02:07 PM	06/26/2020 02:12 PM	10/27/2020 11:30 AM
vendor	Adobe	Adobe	Adobe
name	Illustrator	Illustrator	Illustrator
version	<=24.1.2	<=24.1.2	<=24.1.2
risk	2	2	2
cvss2_vuldb_basescore	6.8	6.8	6.8
cvss2_vuldb_tempscore	5.9	5.9	5.9
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	M	M	M
cvss2_vuldb_au	N	N	N
cvss2_vuldb_ci	P	P	P
cvss2_vuldb_ii	P	P	P
cvss2_vuldb_ai	P	P	P
cvss3_meta_basescore	7.0	7.0	7.0
cvss3_meta_tempscore	6.7	6.7	6.7
cvss3_vuldb_basescore	6.3	6.3	6.3
cvss3_vuldb_tempscore	6.0	6.0	6.0
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	N	N	N
cvss3_vuldb_ui	R	R	R
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	L	L	L
cvss3_vuldb_i	L	L	L
cvss3_vuldb_a	L	L	L
date	1593043200 (06/25/2020)	1593043200 (06/25/2020)	1593043200 (06/25/2020)
location	Website	Website	Website
type	Security Bulletin	Security Bulletin	Security Bulletin
url	https://helpx.adobe.com/security/products/illustrator/apsb20-37.html	https://helpx.adobe.com/security/products/illustrator/apsb20-37.html	https://helpx.adobe.com/security/products/illustrator/apsb20-37.html
identifier	APSB20-37	APSB20-37	APSB20-37
price_0day	$5k-$25k	$5k-$25k	$5k-$25k
name	Upgrade	Upgrade	Upgrade
cve	CVE-2020-9575	CVE-2020-9575	CVE-2020-9575
seealso	157294 157295 157296 157297	157294 157295 157296 157297	157294 157295 157296 157297
cvss2_vuldb_e	ND	ND	ND
cvss2_vuldb_rl	OF	OF	OF
cvss2_vuldb_rc	C	C	C
cvss3_vuldb_e	X	X	X
cvss3_vuldb_rl	O	O	O
cvss3_vuldb_rc	C	C	C
cvss3_nvd_basescore	7.8	7.8	7.8
type		Image Processing Software	Image Processing Software
cwe	0	119 (memory corruption)	119 (memory corruption)
cvss2_nvd_av		N	N
cvss2_nvd_ac		M	M
cvss2_nvd_au		N	N
cvss2_nvd_ci		C	C
cvss2_nvd_ii		C	C
cvss2_nvd_ai		C	C
cvss3_nvd_av		L	L
cvss3_nvd_ac		L	L
cvss3_nvd_pr		N	N
cvss3_nvd_ui		R	R
cvss3_nvd_s		U	U
cvss3_nvd_c		H	H
cvss3_nvd_i		H	H
cvss3_nvd_a		H	H
cve_assigned		1583107200	1583107200
cve_nvd_summary		Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .	Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
confirm_url			https://helpx.adobe.com/security/products/illustrator/apsb20-37.html

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!