Adobe Photoshop Desktop Integer Underflow Vulnerability Leading to Arbitrary Code Execution

Vulnerability

A vulnerability allowing arbitrary code execution has been identified in Adobe Photoshop Desktop versions 26.5, 25.12.2 and earlier. This integer underflow vulnerability could be exploited by a user who opens a malicious file, as the issue requires user interaction.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution in the context of the current user.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Adobe Photoshop Desktop Integer Underflow Vulnerability Leading to Arbitrary Code Execution

Vulnerability

Impact

Affected Products

Adobe Photoshop

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating