8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.9 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.151 Low
EPSS
Percentile
95.7%
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
CPE | Name | Operator | Version |
---|---|---|---|
photoshop_cc | le | 19.1.8 | |
photoshop_cc | ge | 20.0 | |
photoshop_cc | le | 20.0.5 |
helpx.adobe.com/security/products/photoshop/apsb19-44.html
www.zerodayinitiative.com/advisories/ZDI-19-768/
www.zerodayinitiative.com/advisories/ZDI-19-769/
www.zerodayinitiative.com/advisories/ZDI-19-770/
www.zerodayinitiative.com/advisories/ZDI-19-771/
www.zerodayinitiative.com/advisories/ZDI-19-772/
www.zerodayinitiative.com/advisories/ZDI-19-773/
www.zerodayinitiative.com/advisories/ZDI-19-774/
www.zerodayinitiative.com/advisories/ZDI-19-775/
www.zerodayinitiative.com/advisories/ZDI-19-776/
www.zerodayinitiative.com/advisories/ZDI-19-777/
www.zerodayinitiative.com/advisories/ZDI-19-778/
www.zerodayinitiative.com/advisories/ZDI-19-779/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.9 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.151 Low
EPSS
Percentile
95.7%