The host is installed with Adobe Animate 23.0.x before 23.0.6, or 24.0.x before 24.0.3 and is prone to a NULL pointer dereference vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause arbitrary code execution.