CVE-2024-34115 – Adobe Substance 3D Stager Zero-Day Vulnerability

Severity

High

Analysis Summary

CVE-2024-34115

Adobe Substance 3D Stager could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2024-34115

Affected Vendors

Adobe

Affected Products

Adobe Substance 3D Stager 2.1.4

Remediation

Refer to Adobe Security Advisory for patch, upgrade or suggested workaround information.

Adobe Security Advisory

Multiple Fortinet FortiSOAR and FortiOS Vulnerabilities

North Korea-Linked Konni APT Group – Active IOCs

CVE-2024-34115 – Adobe Substance 3D Stager Zero-Day Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan