Schneider Electric Acknowledges Data Theft on Developer Platform

November 5, 2024

CVE-2024-23590 – Apache Kylin Vulnerability

November 5, 2024

CVE-2024-49522 – Adobe Substance 3D Painter Vulnerability

November 5, 2024

Severity

High

Analysis Summary

CVE-2024-49522

Adobe Substance 3D Painter could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write error. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to execute code on the system with the privileges of the victim or cause the application to crash.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2024-49522

Affected Vendors

Adobe

Affected Products

Adobe Substance 3D Painter 10.0.1

Remediation

Refer to Adobe Security Advisory for patch, upgrade or suggested workaround information.

Adobe Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Local Privilege Escalation to Root via Sudo chroot in Linux

CoinMiner Malware – Active IOCs

Google Warns of Active Exploits Targeting Chrome V8 Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Schneider Electric Acknowledges Data Theft on Developer Platform

CVE-2024-23590 – Apache Kylin Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation