CVE-2023-26349

Name of the Vulnerable Software and Affected Versions Adobe Dimension versions 3.4.7 and earlier

Description The issue is related to a use-after-free condition when handling USDZ files, potentially allowing an attacker to access sensitive information using a specially crafted USDZ file. This could enable bypassing of certain security mitigations. Exploitation requires user interaction, such as opening a malicious file.

Recommendations For Adobe Dimension versions 3.4.7 and earlier, update to a version that addresses this issue to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.