CVE-2023-44332

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 16, 2023
Updated: Nov 20, 2023
CWE ID 125

Summary

CVE-2023-44332 is a newly disclosed vulnerability affecting Adobe Photoshop versions 24.7.1 and 25.0 (and earlier). This issue represents an out-of-bounds read vulnerability, which allows an attacker to access sensitive memory content beyond designated boundaries. The exploitation of this flaw could potentially bypass Address Space Layout Randomization (ASLR), a common security mitigation technique. To successfully launch an attack, the victim must open a malicious file, making user interaction a requirement.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share