Lucene search
PRIOn knowledge basePRION:CVE-2023-25860HistoryMar 22, 2023 - 5:15 p.m.
Cross site scripting
2023-03-2217:15:00
PRIOn knowledge base
www.prio-n.com
3
adobe illustrator
older versions
cross site scripting
arbitrary code execution
user interaction
0.004 Low
EPSS
Percentile
74.1%
Illustrator version 26.5.2 (and earlier) and 27.2.0 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| illustrator | ge | 27.0.0 | |
| illustrator | lt | 27.3.1 | |
| illustrator | le | 26.5.2 |
Related
cve
cve
CVE-2023-25860
2023-03-22 17:15:15
nvd
nvd
CVE-2023-25860
2023-03-22 17:15:15
cnvd
cnvd
Adobe Illustrator Out-of-Bounds Write Vulnerability (CNVD-2023-50822)
2023-03-17 00:00:00
zdi
zdi
cvelist
cvelist
adobe
adobe
APSB23-19 : Security update available for Adobe Illustrator
2023-03-14 00:00:00
nessus
nessus
Adobe Illustrator < 27.3.1 Multiple Vulnerabilities (APSB23-19) (macOS)
2023-10-16 00:00:00
Adobe Illustrator < 27.3.1 Multiple Vulnerabilities (APSB23-19)
2023-03-14 00:00:00
openvas
openvas
Adobe Illustrator Multiple Vulnerabilities (APSB23-19) - Mac OS X
2023-03-15 00:00:00
Adobe Illustrator Multiple Vulnerabilities (APSB23-19) - Windows
2023-03-15 00:00:00