CVSS: 9.8EPSS: 13%CPEs: 1EXPL: 0CVE-2017-11303
https://notcve.org/view.php?id=CVE-2017-11303
09 Dec 2017 — An issue was discovered in Adobe Photoshop 18.1.1 (2017.1.1) and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution. Se ha descubierto un problema en Adobe Photoshop 18.1.1 (2017.1.1) y anteriores. Existe una vulnerabilidad de corrupción de memoria explotable. • http://www.securityfocus.com/bid/101829 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2017-11304 – Adobe Photoshop JPEG2000 Use-After-Free Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2017-11304
20 Nov 2017 — An issue was discovered in Adobe Photoshop 18.1.1 (2017.1.1) and earlier versions. An exploitable use-after-free vulnerability exists. Successful exploitation could lead to arbitrary code execution. Se ha descubierto un problema en Adobe Photoshop 18.1.1 (2017.1.1) y anteriores. Existe una vulnerabilidad de uso de memoria previamente liberada. • http://www.securityfocus.com/bid/101829 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 47%CPEs: 28EXPL: 1CVE-2012-2027 – Adobe Photoshop 12.1 - '.tiff' Parsing Use-After-Free
https://notcve.org/view.php?id=CVE-2012-2027
09 May 2012 — Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file. Una vulnerabilidad de uso de memoria previamente liberada en Photoshop CS5 versiones 12.x anteriores a 12.0.5 y CS5.1 versiones 12.1.x anteriores a 12.1.1 de Adobe, permite a los atacantes remotos ejecutar código arbitrario por medio de un TIFF diseñada (también se conoce como .TIF). • https://www.exploit-db.com/exploits/18633 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 19%CPEs: 28EXPL: 0CVE-2012-2028
https://notcve.org/view.php?id=CVE-2012-2028
09 May 2012 — Buffer overflow in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de buffer en Adobe Photoshop antes de CS6, permite a atacantes remotos ejecutar código de su elección a través de un archivo TIFF modificado (también conocido como .TIF). • http://www.adobe.com/support/security/bulletins/apsb12-11.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 15EXPL: 0CVE-2011-2164
https://notcve.org/view.php?id=CVE-2011-2164
20 May 2011 — Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack vectors. Múltiples vulnerabilidades no especificadas en Adobe Photoshop antes de v12.0.4 tienen un impacto y vectores de ataque desconocidos. • http://blogs.adobe.com/jnack/2011/05/photoshop-12-0-4-update-for-cs5-arrives.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 4CVE-2009-3489 – Adobe Photoshop Elements - Active File Monitor Service Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-3489
30 Sep 2009 — Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command. Adobe Photoshop Elements v8.0 instala Adobe Active File Monitor V8 service con un descriptor de seguridad no seguro, que permite a usuarios locales (1) parar el servicio a t... • https://www.exploit-db.com/exploits/9988 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2006-0525
https://notcve.org/view.php?id=CVE-2006-0525
02 Feb 2006 — Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs. • http://secunia.com/advisories/18698 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2005-0151
https://notcve.org/view.php?id=CVE-2005-0151
09 Jun 2005 — Unknown vulnerability in the installation of Adobe License Management Service, as used in Adobe Photoshop CS, Adobe Creative Suite 1.0, and Adobe Premiere Pro 1.5, allows attackers to gain administrator privileges. • http://securitytracker.com/id?1014168 •