|CVSS SCORE||4.3, (AV:N/AC:M/Au:N/C:P/I:N/A:N)|
The specific flaw exists within the handling of arguments passed to the makeMeasurement method. A specially crafted argument to makeMeasurement will leave objects in an inconsistent state. This data can later be retrieved via a call to dumpMeasureData. An attacker can leverage this vulnerability to disclose sensitive information about the current process.
Adobe has issued an update to correct this vulnerability. More details can be found at: