Detections
Analytics

CVE-2026-34632

high

Description

Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have resulted in arbitrary code execution in the context of the current user. A low-privileged local attacker could have exploited this vulnerability by manipulating the search path used by the application to locate critical resources, potentially causing unauthorized code execution. Exploitation of this issue required user interaction in that a user had to be running the installer.

References

https://blog.talosintelligence.com/tp-link-photoshop-openvpn-norton-vpn-vulnerabilities/

https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2274

https://cwe.mitre.org/data/definitions/427.html

Details

Source: Mitre, NVD

Published: 2026-04-15

Updated: 2026-04-22

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 8.2

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00008