CVE-2022-38434 Adobe Photoshop versions 22.5.8 and 23.4.2 are affected by a Use After Free vulnerability that could lead to arbitrary code execution in the context of the current user.
An attacker could leverage social engineering to convince a user to open a malicious file or leverage malicious links in email messages. Access to the
CVE-2022-35713 Adobe Photoshop versions 22.5.8 and 23.4.2 are affected by a write privilege escalation vulnerability that could lead to arbitrary code execution.
An attacker could leverage this vulnerability to elevate privileges or install a malware package. Bypassing Microsoft Windows User Account Control (UAC) is another way an
CVE-2022-38414 InDesign versions 16.4.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
In the majority of cases, InDesign users are not aware of the malicious file existing on the system. The malicious file might be installed through
CVE-2022-38413 InDesign versions 16.4.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
In the majority of cases, InDesign users are not aware of the malicious file existing on the system. The malicious file might be installed through
CVE-2022-38426 Adobe Photoshop versions 22.5.8 and 23.4.2 are affected by an Access of Uninitialized Pointer vulnerability that could lead to arbitrary code execution.
Access of Uninitialized Pointer vulnerabilities are typically found in libraries or components that handle untrusted data. In the case of Adobe Photoshop, this means images.
Episode
00:00:00
00:00:00