Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-2131

CWE-119Buffer Overflow4 documents4 sources
Severity
9.3CRITICAL
EPSS
48.0%
top 2.28%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Adobe Creative SuiteAdobe Photoshop
Timeline
PublishedAug 11
Latest updateMay 17

Description

Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GIF file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDadobe/creative_suite5, 5.1+1
NVDadobe/photoshop12.0, 12.1+1

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-2fm8-4j83-qggv: Adobe Photoshop 122022-05-17
CVEList
CVE-2011-2131: Adobe Photoshop 122011-08-11

💥Exploits & PoCs

1
Exploit-DB
Adobe Photoshop CS5 - '.gif' Remote Code Execution2011-08-22
CVE-2011-2131 (CRITICAL CVSS 9.3) | Adobe Photoshop 12.0 in Creative Su | cvebase.io