CVE-2019-7989

high

Description

Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

References

Advisories
More

https://www.zerodayinitiative.com/advisories/ZDI-19-779/

https://www.zerodayinitiative.com/advisories/ZDI-19-778/

https://www.zerodayinitiative.com/advisories/ZDI-19-777/

https://www.zerodayinitiative.com/advisories/ZDI-19-776/

https://www.zerodayinitiative.com/advisories/ZDI-19-775/

https://www.zerodayinitiative.com/advisories/ZDI-19-774/

https://www.zerodayinitiative.com/advisories/ZDI-19-773/

https://www.zerodayinitiative.com/advisories/ZDI-19-772/

https://www.zerodayinitiative.com/advisories/ZDI-19-771/

https://www.zerodayinitiative.com/advisories/ZDI-19-770/

https://www.zerodayinitiative.com/advisories/ZDI-19-769/

https://www.zerodayinitiative.com/advisories/ZDI-19-768/

https://helpx.adobe.com/security/products/photoshop/apsb19-44.html

Details

Source: Mitre, NVD

Published: 2019-08-26

Updated: 2021-09-08

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.0281

Detections

Analytics