CVE-2023-38211: 
Adobe Dimension vulnerability analysis and mitigation

Adobe Dimension version 3.4.9 and earlier versions are affected by a Use After Free vulnerability (CVE-2023-38211). The vulnerability was discovered by Mat Powell of Trend Micro Zero Day Initiative and was disclosed on August 8, 2023. This security flaw affects Adobe Dimension software running on both Windows and macOS operating systems (Adobe Security Bulletin).

The vulnerability is classified as a Use After Free (CWE-416) issue that could potentially lead to arbitrary code execution in the context of the current user. The vulnerability has received a CVSS v3.1 Base Score of 7.8 (High) with the following vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (NVD).

If successfully exploited, this vulnerability could result in arbitrary code execution in the context of the current user. The high CVSS score of 7.8 indicates significant potential impact on the confidentiality, integrity, and availability of the affected system (Lansweeper).

Adobe has released version 3.4.10 to address this vulnerability. Users are recommended to update their installation to the newest version via the Creative Cloud desktop app's update mechanism (Lansweeper).