CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34117 – Adobe Photoshop 2024 MPO File Parsing Use-After-Free vulnerability
https://notcve.org/view.php?id=CVE-2024-34117
Photoshop Desktop versions 24.7.3, 25.9.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/photoshop/apsb24-49.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41856 – Illustrator | Improper Input Validation (CWE-20)
https://notcve.org/view.php?id=CVE-2024-41856
Illustrator versions 28.5, 27.9.4, 28.6, 27.9.5 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/illustrator/apsb24-66.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34133 – Adobe Illustrator CC 2023 v27.9 Vulnerability I
https://notcve.org/view.php?id=CVE-2024-34133
Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/illustrator/apsb24-45.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41865 – Adobe Dimension Untrusted Search Path lead to load malicious DLL swift.dll
https://notcve.org/view.php?id=CVE-2024-41865
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution. • https://helpx.adobe.com/security/products/dimension/apsb24-47.html • CWE-426: Untrusted Search Path •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39401 – Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
https://notcve.org/view.php?id=CVE-2024-39401
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an admin attacker. • https://helpx.adobe.com/security/products/magento/apsb24-61.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •