CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-21162 – Photoshop Elements | Creation of Temporary File in Directory with Incorrect Permissions (CWE-379)
https://notcve.org/view.php?id=CVE-2025-21162
11 Feb 2025 — Photoshop Elements versions 2025.0 and earlier are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/photoshop_elements/apsb25-13.html • CWE-379: Creation of Temporary File in Directory with Insecure Permissions •
CVSS: 7.8EPSS: 9%CPEs: 1EXPL: 0CVE-2021-39825 – Adobe Photoshop Elements Edit 2021 TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-39825
27 Sep 2021 — Photoshop Elements versions 2021 build 19.0 (20210304.m.156367) (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious TTF file. Photoshop Elements versiones 2021 build 19.0 (20210304.m.156367) (y anteriores), están afectadas por una vulnerabilidad de escritura fuera de límites que podría resultar en una ejecución de código ... • https://helpx.adobe.com/security/products/photoshop_elements/apsb21-77.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 57%CPEs: 3EXPL: 3CVE-2011-2443 – Adobe Photoshop Elements 8.0 - Multiple Arbitrary Code Execution Vulnerabilities
https://notcve.org/view.php?id=CVE-2011-2443
04 Oct 2011 — Multiple buffer overflows in Adobe Photoshop Elements 8.0 and earlier allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted (1) .grd or (2) .abr file, a related issue to CVE-2010-1296. Múltiples desbordamientos de búfer en Adobe Photoshop Elements v8.0 y anteriores permite a atacantes remotos causar una denegación de servicio (corrupción de memoria y caída de la aplicación) o posiblemente ejecutar código arbitrario a tr... • https://www.exploit-db.com/exploits/17918 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 4CVE-2009-3489 – Adobe Photoshop Elements - Active File Monitor Service Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-3489
30 Sep 2009 — Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command. Adobe Photoshop Elements v8.0 instala Adobe Active File Monitor V8 service con un descriptor de seguridad no seguro, que permite a usuarios locales (1) parar el servicio a t... • https://www.exploit-db.com/exploits/9988 • CWE-732: Incorrect Permission Assignment for Critical Resource •