CVE-2018-4946 — Out-of-bounds Write in Adobe Photoshop CC

CWE-787 — Out-of-bounds Write3 documents3 sources

Severity

8.8HIGHNVD

EPSS

8.0%

top 7.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Photoshop CC

Timeline

PublishedJul 9

Latest updateMay 13

Description

Adobe Photoshop CC versions 19.1.3 and earlier, 18.1.3 and earlier, and 18.1.2 and earlier have an Out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

▶NVDadobe/photoshop_cc19.0.0 — 19.1.3+2

🔴Vulnerability Details

GHSA

GHSA-7f8r-jc6c-39f7: Adobe Photoshop CC versions 19↗2022-05-13

▶

CVEList

CVE-2018-4946: Adobe Photoshop CC versions 19↗2018-07-09

▶