← back
CVE-2021-42735

Adobe Photoshop Memory Corruption could lead to Arbitrary code execution

CVSS 7.8 HIGHEPSS 2.0%CWE-788
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.8EPSS 2.0%KEV nãoPoC Patch
Lifecycle
15 Jun 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Adobe Photoshop version 22.5.1 (and earlier versions ) is affected by an Access of Memory Location After End of Buffer vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Adobe · Photoshop

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://helpx.adobe.com/security/products/photoshop/apsb21-109.html