Adobe Photoshop up to 22.5.8/23.4.2 uninitialized pointer

Summaryinfo

A vulnerability was found in Adobe Photoshop up to 22.5.8/23.4.2 and classified as problematic. The affected element is an unknown function. Executing a manipulation can lead to uninitialized pointer. This vulnerability is handled as CVE-2022-38426. It is possible to launch the attack on the local host. There is not any exploit available. It is suggested to upgrade the affected component.

Detailsinfo

A vulnerability has been found in Adobe Photoshop up to 22.5.8/23.4.2 (Image Processing Software) and classified as problematic. This vulnerability affects an unknown code. The manipulation with an unknown input leads to a uninitialized pointer vulnerability. The CWE definition for the vulnerability is CWE-824. The product accesses or uses a pointer that has not been initialized. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was released 09/13/2022. The advisory is available at helpx.adobe.com. This vulnerability was named CVE-2022-38426. Successful exploitation requires user interaction by the victim. The technical details are unknown and an exploit is not available.

Upgrading to version 22.5.9 or 23.5.0 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Productinfo

Type

• Image Processing Software

Vendor

• Adobe

Name

• Photoshop

Version

• 22.5.0
• 22.5.1
• 22.5.2
• 22.5.3
• 22.5.4
• 22.5.5
• 22.5.6
• 22.5.7
• 22.5.8
• 23.4.0
• 23.4.1
• 23.4.2

License

• commercial

Website

• Vendor: https://www.adobe.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Discussion