CVE-2022-28844
First published: Wed Jun 15 2022(Updated: )
Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Bridge | <=12.0.1 | |
| Apple macOS | ||
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of Adobe Bridge?
The vulnerability ID of Adobe Bridge is CVE-2022-28844.
What is the severity rating of CVE-2022-28844?
The severity rating of CVE-2022-28844 is critical (7.8).
How does CVE-2022-28844 affect Adobe Bridge?
CVE-2022-28844 affects Adobe Bridge version 12.0.1 (and earlier versions) and can result in arbitrary code execution in the context of the current user.
What is required for exploitation of CVE-2022-28844?
Exploitation of CVE-2022-28844 requires user interaction, as a victim must open a malicious file.
Is Adobe Bridge on Apple macOS and Microsoft Windows affected by CVE-2022-28844?
No, Adobe Bridge on Apple macOS and Microsoft Windows is not affected by CVE-2022-28844.
Where can I find more information about CVE-2022-28844?
You can find more information about CVE-2022-28844 at the following reference: [Adobe Security Advisory](https://helpx.adobe.com/security/products/bridge/apsb22-25.html)
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- vendor/adobe
- canonical/adobe bridge
- version/adobe bridge/12.0.1
- vendor/apple
- canonical/apple macos
- vendor/microsoft
- canonical/microsoft windows