First published: Thu Nov 16 2023(Updated: )
Adobe Photoshop versions 24.7.1 (and earlier) and 25.0 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|Affected Software||Affected Version||How to fix|
CVE-2023-44335 is a memory corruption vulnerability in Adobe Photoshop versions 24.7.1 and earlier (including 25.0) that could result in the disclosure of sensitive memory.
CVE-2023-44335 allows an attacker to perform an out-of-bounds read, potentially bypassing mitigations like ASLR, and obtain sensitive information from the system's memory.
Adobe Photoshop versions 24.7.1 and earlier (including 25.0) are affected by CVE-2023-44335.
The severity rating of CVE-2023-44335 is medium, with a severity value of 5.5.
To mitigate the risk of CVE-2023-44335, it is recommended to update Adobe Photoshop to the latest version provided by Adobe, as they have released a security patch to address this vulnerability.