Adobe released security updates for arbitrary code execution vulnerability for Windows and macOS.
Adobe Photoshop version 22.1 (and earlier) is affected by a heap buffer overflow vulnerability when handling a specially crafted font file.
And, Successful exploitation could lead to arbitrary code execution.
However, the exploitation of this issue requires user interaction in that a victim must open a malicious file.
|Photoshop 2021||22.1 and earlier version||Windows and macOS|
Importantly, this vulnerability considered as High severity and with the following base score
|Vulnerability Rating:||CVSS v3.0|
|Vulnerability Rating:||CVSS v2.0|
In addition, the vulnerability impacts — Arbitrary Code Execution, Denial of Service.
Adobe Security Bulletin – https://helpx.adobe.com/security/products/photoshop/apsb21-01.html