Photoshop Desktop versions 24.7.3, 25.11 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Metrics
Affected Vendors & Products
References
History
Tue, 12 Nov 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Adobe
Adobe photoshop 2023 Adobe photoshop 2024 |
|
CPEs | cpe:2.3:a:adobe:photoshop_2023:*:*:*:*:*:*:*:* cpe:2.3:a:adobe:photoshop_2024:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Adobe
Adobe photoshop 2023 Adobe photoshop 2024 |
|
Metrics |
ssvc
|
Tue, 12 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Photoshop Desktop versions 24.7.3, 25.11 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |
Title | Photoshop Desktop | Integer Underflow (Wrap or Wraparound) (CWE-191) | |
Weaknesses | CWE-191 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2024-11-12T16:59:43.186Z
Updated: 2024-11-12T17:23:37.453Z
Reserved: 2024-10-15T15:35:47.027Z
Link: CVE-2024-49514
Vulnrichment
Updated: 2024-11-12T17:23:22.752Z
NVD
Status : Awaiting Analysis
Published: 2024-11-12T17:15:08.490
Modified: 2024-11-13T17:01:58.603
Link: CVE-2024-49514
Redhat
No data.