Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-42735


Adobe Photoshop version 22.5.1 (and earlier versions ) is affected by an Access of Memory Location After End of Buffer vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.


Published

2022-06-15T20:15:17.380

Last Modified

2024-11-21T06:28:04.270

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

8.6

Impact Score

6.4

Weaknesses
  • Type: Primary
    CWE-788

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application adobe photoshop ≤ 22.5.1 Yes
Operating System apple macos - No
Operating System microsoft windows - No

References