CVE-2023-44333

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 16, 2023
Updated: Nov 20, 2023
CWE ID 125

Summary

CVE-2023-44333 is a newly disclosed vulnerability affecting Adobe Photoshop versions 24.7.1 and 25.0 (and earlier). This issue represents an out-of-bounds read vulnerability that enables an attacker to read sensitive memory, potentially bypassing mitigations like Address Space Layout Randomization (ASLR). However, for an attack to be successful, the victim must open a maliciously crafted file. This vulnerability poses a significant risk, as sensitive information could be disclosed to unauthorized parties. Users are advised to update their Photoshop software as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share