28 matches found
CVE-2025-30324
Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...
PT-2025-1290 · Adobe · Photoshop
Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 25.12, 26.1 and earlier Description: The issue is related to an Uncontrolled Search Path Element vulnerability that could lead to arbitrary code execution. An attacker could manipulate the search path environment...
Adobe Photoshop 缓冲区错误漏洞
Adobe Photoshop is a suite of image processing software from the American company Audobee Adobe. The software is primarily used for processing images. A buffer error vulnerability exists in Adobe Photoshop versions 24.x through 24.7.4 and 25.x through versions prior to 25.11, which stems from bei...
PT-2024-4221 · Adobe · Photoshop
Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 24.7.3, 25.7 and earlier Description: The issue is related to an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker...
CVE-2023-44331
Adobe Photoshop versions 24.7.1 and earlier and 25.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
PT-2023-7142 · Adobe · Photoshop
Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 24.7.1 and earlier Adobe Photoshop versions 25.0 and earlier Description: The issue is related to an out-of-bounds read in memory, which could allow an attacker to bypass the Address Space Layout Randomization ASLR...
CVE-2023-25908
Adobe Photoshop versions 23.5.3 and earlier and 24.1.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Vulnerability fixed in Adobe Photoshop
Adobe has fixed a vulnerability in Photoshop. A local malicious party can exploit the vulnerability to execute arbitrary code. The malicious party does not need any prior authorizations on the application. Adobe has released updates to fix the vulnerability in Photoshop 2022 v23.5.4 & 2023 v24.2....
CVE-2023-21574
Photoshop version 23.5.3 and earlier, 24.1 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
PT-2023-1667 · Adobe · Photoshop
Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 23.5.3 and earlier Adobe Photoshop versions 24.1 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user...
CVE-2022-38426
Adobe Photoshop versions 22.5.8 and earlier and 23.4.2 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...
CVE-2022-35713
Adobe Photoshop versions 22.5.8 and earlier and 23.4.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...
CVE-2022-28277
Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious PDF...
CVE-2022-28274
Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the...
CVE-2022-23205
Adobe Photoshop versions 22.5.6 and earlierand 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2022-24098
Adobe Photoshop versions 22.5.6 and earlierand 23.2.2 and earlier are affected by an improper input validation vulnerability when parsing a PCX file that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a...
PT-2022-7051 · Adobe · Photoshop
Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 22.5.6 and earlier Adobe Photoshop versions 23.2.2 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user...
CVE-2021-21049
Adobe Photoshop versions 21.2.4 and earlier and 22.1.1 and earlier are affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user...
CVE-2020-9685
Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2020-3784
Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution...