CVSS 3.1 Score 5.5 of 10 (medium)


Published Nov 16, 2023
Updated: Nov 22, 2023
CWE ID 125


CVE-2023-44334 is an out-of-bounds read vulnerability affecting Adobe Photoshop versions 24.7.1 and earlier, as well as version 25.0 and earlier. This vulnerability could potentially lead to the disclosure of sensitive memory. The exploitation of this vulnerability requires user interaction, specifically opening a malicious file. It should be noted that this vulnerability can bypass mitigations like ASLR. The affected products include various versions of Adobe Photoshop. To remediate this issue, users are advised to update their software to a version that is not affected by the vulnerability. This vulnerability poses a medium risk with high confidentiality impact to organizations utilizing the affected Adobe Photoshop versions.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-44334 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options