Lucene search

AdobeAPSB17-12

HistoryApr 11, 2017 - 12:00 a.m.

APSB17-12 Security update available for Adobe Photoshop CC

2017-04-1100:00:00

helpx.adobe.com

1013

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

73.4%

JSON

Adobe has released updates for Photoshop CC for Windows and Macintosh. These updates resolve a critical memory corruption vulnerability when parsing malicious PCX files that could lead to code execution (CVE-2017-3004). These updates also resolve an unquoted search path vulnerability in Photoshop on Windows (CVE-2017-3005).

Affected configurations

Vulners

Node

adobephotoshop_ccRange≤18.0.1

adobephotoshop_ccRange≤17.0.1

adobephotoshop_ccRange≤15.5.1

VendorProductVersionCPE
adobephotoshop_cc*cpe:2.3:a:adobe:photoshop_cc:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	photoshop_cc	*	cpe:2.3:a:adobe:photoshop_cc::::::::

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

73.4%

JSON

Related for APSB17-12