CVE-2023-44332: Adobe Photoshop 2023 CC 24.7 Memory Corruption Vulnerability II.
First published: Thu Nov 16 2023(Updated: )
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Photoshop | <=24.7.2 | |
| Apple macOS | ||
| Microsoft Windows | ||
| Adobe Photoshop | <=25.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-44332?
CVE-2023-44332 is a memory corruption vulnerability in Adobe Photoshop versions 24.7.1 and earlier, and 25.0 and earlier, which could result in the disclosure of sensitive memory.
How severe is CVE-2023-44332?
CVE-2023-44332 has a severity rating of 5.5 out of 10, indicating a medium severity.
Which versions of Adobe Photoshop are affected by CVE-2023-44332?
Adobe Photoshop versions 24.7.1 (and earlier) and 25.0 (and earlier) are affected by CVE-2023-44332.
Is Apple macOS vulnerable to CVE-2023-44332?
No, Apple macOS is not vulnerable to CVE-2023-44332.
Is Microsoft Windows vulnerable to CVE-2023-44332?
No, Microsoft Windows is not vulnerable to CVE-2023-44332.
How can CVE-2023-44332 be exploited?
Exploitation of CVE-2023-44332 requires user interaction.
Are there any mitigations for CVE-2023-44332?
Mitigations such as ASLR may be bypassed by CVE-2023-44332.
How do I fix CVE-2023-44332?
To fix CVE-2023-44332, update Adobe Photoshop to version 24.7.2 or later.
Where can I find more information about CVE-2023-44332?
You can find more information about CVE-2023-44332 at the following reference: [Adobe Security Bulletin APSB23-56](https://helpx.adobe.com/security/products/photoshop/apsb23-56.html).
- collector/mitre-cve
- collector/nvd-api
- vendor/adobe
- product/photoshop
- canonical/adobe photoshop
- vendor/apple
- product/macos
- canonical/apple macos
- vendor/microsoft
- product/windows
- canonical/microsoft windows