CVE-2024-34140

Name of the Vulnerable Software and Affected Versions Adobe Bridge versions 14.1 and earlier Adobe Bridge versions 14.0.4 Adobe Bridge versions 13.0.7

Description The issue is related to an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction, in that a victim must open a malicious file. This vulnerability is associated with a file manager and may allow an attacker to reveal protected information.

Recommendations For Adobe Bridge versions 14.1 and earlier, update to a version that is not affected by this issue. For Adobe Bridge versions 14.0.4, update to a version that is not affected by this issue. For Adobe Bridge versions 13.0.7, update to a version that is not affected by this issue. As a temporary workaround, consider avoiding the use of file manager functions that may trigger the out-of-bounds read vulnerability until a patch is available.