CVE-2023-44332
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 16, 2023
Updated: Nov 20, 2023
CWE ID 125
Summary
CVE-2023-44332 is a newly disclosed vulnerability affecting Adobe Photoshop versions 24.7.1 and 25.0 (and earlier). This issue represents an out-of-bounds read vulnerability, which allows an attacker to access sensitive memory content beyond designated boundaries. The exploitation of this flaw could potentially bypass Address Space Layout Randomization (ASLR), a common security mitigation technique. To successfully launch an attack, the victim must open a malicious file, making user interaction a requirement.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Photoshop
Affected Vendors
- Adobe