Arbitrary Code Execution Vulnerability in Adobe Photoshop and Bridge
CVE-2016-0952

9.8CRITICAL

Key Information:

Vendor
Adobe
Status
Bridge Cc
Photoshop Cc
Vendor
CVE Published:
10 February 2016

Summary

Adobe Photoshop CC and Bridge contain vulnerabilities that can be exploited by attackers to execute arbitrary code or induce a denial of service through unspecified vectors. These weaknesses affect various installations prior to specific versions, highlighting the importance of timely software updates to mitigate potential risks. Users are urged to remain vigilant and enhance their security posture by applying the recommended patches.

References

https://helpx.adobe.com/security/products/photoshop/apsb1...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1034979
vdb-entryx_refsource_SECTRACK
https://www.exploit-db.com/exploits/39430/
exploitx_refsource_EXPLOIT-DB

EPSS Score

17% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.