Adobe Photoshop versions 23.5.5 (and earlier) and 24.7 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Security update available for Adobe Photoshop | APSB23-51

**Bulletin ID**

**Date Published**

**Priority**

APSB23-51

October 10,  2023       

3

**Summary**

Adobe has released an update for Photoshop for Windows and macOS. This update resolves a critical vulnerability.  Successful exploitation could lead to arbitrary code execution.    

**Affected Versions**

23.5.5 and earlier versions       

24.7 and earlier versions

**Solution**

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version via the Creative Cloud desktop app’s update mechanism.  For more information, please reference this help page.    

**Product**

**Updated versions**

**Platform**

**Priority**

Photoshop 2023  

24.7.1

Windows and macOS  

3  

Photoshop 2024

25.0

Windows and macOS

3

For managed environments, IT administrators can use the Admin Console to deploy Creative Cloud applications to end users. Refer to this help page for more information.

**Vulnerability details**

**Vulnerability Category**

**Vulnerability Impact**

**Severity**

**CVSS base score**   

**CVSS vector**  

**CVE Number**

Access of Uninitialized Pointer (CWE-824)  

Arbitrary code execution  

Critical

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H  

CVE-2023-26370  

**Acknowledgments**

Adobe would like to thank the following researcher for reporting this issue and for working with Adobe to help protect our customers:   

Anonymous working with Trend Micro Zero Day Initiative - CVE-2023-26370  

NOTE: Adobe has a private, invite-only, bug bounty program with HackerOne. If you are interested in working with Adobe as an external security researcher, please fill out this form for next steps.  

For more information, visit https://helpx.adobe.com/security.html, or email PSIRT@adobe.com.

CVE-2023-26370: Adobe Security Bulletin

Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.

CVE-2023-5520

The Bluetooth module has a vulnerability in permission control for broadcast notifications.Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-44101

Incorrect Authorization in GitHub repository tiann/kernelsu prior to v0.6.9.

CVE-2023-5521

Clone vulnerability in the huks ta module.Successful exploitation of this vulnerability may affect service confidentiality.

HUAWEI is releasing monthly security updates for flagship models. This security update includes HUAWEI and third-party library patches:

This security update includes the following third-party library patches:

This security update includes the CVE announced in the September 2023 Android security bulletin:

Critical: CVE-2023-35658, CVE-2023-35673

High: CVE-2023-35679, CVE-2023-35687, CVE-2023-35669, CVE-2023-35667, CVE-2023-35677, CVE-2023-35666, CVE-2023-35684, CVE-2023-28584

Medium: none

Low: none

Already included in previous updates: CVE-2023-21284, CVE-2020-29374, CVE-2023-21251, CVE-2023-20942, CVE-2023-21189

※For more information on security patches, please refer to the Android security bulletins (https://source.android.com/security/bulletin).

This security update includes the CVE of other third-party library patches:

Critical: CVE-2023-4863

This security update includes the following HUAWEI patches:

CVE-2023-41295: Vulnerability of improper permission management in the displayengine module

Severity: Medium

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may cause the screen to turn dim.

CVE-2023-41304: Parameter verification vulnerability in the window module

Severity: Medium

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may cause the size of an app window to be adjusted to that of a floating window.

CVE-2023-44093: Vulnerability of package names' public keys not being verified in the security module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44094: Type confusion vulnerability in the distributed file module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may cause the device to restart.

CVE-2023-44095: Use-After-Free (UAF) vulnerability in the surfaceflinger module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1

Impact: Successful exploitation of this vulnerability can cause system crash.

CVE-2023-44096: Vulnerability of brute-force attacks on the device authentication module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44097: Vulnerability of the permission to access device SNs being improperly managed

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44100: Broadcast permission control vulnerability in the Bluetooth module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44102: Broadcast permission control vulnerability in the Bluetooth module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1

Impact: Successful exploitation of this vulnerability can cause the Bluetooth function to be unavailable.

CVE-2023-44103: Out-of-bounds read vulnerability in the Bluetooth module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44104: Broadcast permission control vulnerability in the Bluetooth module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44105: Vulnerability of permissions not being strictly verified in the window management module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2023-44106: API permission management vulnerability in the Fwk-Display module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2023-44108: Type confusion vulnerability in the distributed file module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may cause the device to restart.

CVE-2023-44109: Clone vulnerability in the huks ta module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44110: Out-of-bounds access vulnerability in the audio module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2023-44111: Vulnerability of brute-force attacks on the device authentication module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44114: Out-of-bounds array vulnerability in the dataipa module

Severity: Medium

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-44116: Vulnerability of access permissions not being strictly verified in the APPWidget module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may cause some apps to run without being authorized.

CVE-2023-44118: Vulnerability of undefined permissions in the MeeTime module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVE-2023-44119: Vulnerability of mutual exclusion management in the kernel module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-44109: October

Out-of-bounds read vulnerability exists in KV STUDIO Ver. 11.62 and earlier and KV REPLAY VIEWER Ver. 2.62 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user of KV STUDIO PLAYER open a specially crafted file.

%PDF-1.7 %���� 28 0 obj <> endobj 54 0 obj <>/Encrypt 29 0 R/Filter/FlateDecode/ID\[<5C8E1F49EBF44621A461260C41651E6A>\]/Index\[28 47\]/Info 27 0 R/Length 104/Prev 47993/Root 30 0 R/Size 75/Type/XRef/W\[1 2 1\]>>stream h�bbd\`\`b\`�$�~ �� BH�\\ �V���Ě "�¹\[���+Ho ����� �bW���; 'L�� !&F�� ���!�3=x\`��c endstream endobj startxref 0 %%EOF 74 0 obj <>stream k��@�Wnm�ɲ�����o�3p�2|P:����zF���)�nWĀ�劻�o����R��Q�P�弆%6zG��U:M�����8����2+}�Dy�i8��\]?�B�P茯&�4�>h��$Z��Wj���J� z�����S��o��� �!Vyh�2���������pZ/-L^14 endstream endobj 29 0 obj <>>>/Filter/Standard/Length 256/O(q�A˗����}��c��5fj�Sѣ�wu����w�smC3�Q��)/OE(d��\[����\\)1�jY��c��:TL�3���\])/P -1324/Perms(+u���\\r�¬2���OS)/R 6/StmF/StdCF/StrF/StdCF/U(�+vpK\_' &\_�̄c\\n�@�/�+6o6�G�WO��: iw���f��)/UE(�-�L���jˀ;ϊ\\\\�ؖ���B!�^ Z�)/V 5>> endobj 30 0 obj <)/Metadata 13 0 R/OpenAction 31 0 R/PageLayout/SinglePage/PageMode/UseThumbs/Pages 26 0 R/Type/Catalog/ViewerPreferences<>>> endobj 31 0 obj <> endobj 32 0 obj <N�sQ2�z�z���Qya2BU0OB�y�;ג"�?�bm�~=��y�)/PageTransformationMatrixList<>/PageUIDList<>/PageWidthList<>>>>>/Resources<>/ExtGState<>/Font<>/ProcSet\[/PDF/Text\]/Properties<>/XObject<>>>/Rotate 0/Thumb 11 0 R/TrimBox\[0.0 0.0 595.276 841.89\]/Type/Page>> endobj 33 0 obj <>stream ��Dٗ�K������!kH�$0Z������U�l�6?��HUP�5���v=��������!�J��J����cĄ�<��\[\\Mfh1�d�����8�Q�g���EMUf {D :��\_ O?O#5�\\(�Ǐ���fVQ8�#�#�R����=8,\\F��;���l��\]��ᗷ��t�=�R�2�) mRC��Y��݉��t�P���3���x!���r����ͦ��BzX�ouݖ��%fR~|�5�B�P�5(\[�MMi6Y������W&7�q�&g ���kk�8&�hWl@++�D�U

CVE-2023-42138

Cross-Site Request Forgery (CSRF) vulnerability in Nitin Rathod WP Forms Puzzle Captcha plugin <= 4.1 versions.

**Solution**

 No fix

No patched version available.

Found this useful? Thank Rio Darmawan for reporting this vulnerability. Buy a coffee ☕

Rio Darmawan discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress WP Forms Puzzle Captcha Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has not been known to be fixed yet.

**No other known vulnerabilities for this plugin**Report

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-44997: WordPress WP Forms Puzzle Captcha plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Directory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow attackers to read arbitrary files.

**

MCL-Agent versions 4.08Pxx and above are ONLY compatible with MCL-Mobility Platform version 1.4.x  
Installing the incorrect version of the MCL-Agent might result in un-enrollment of the mobile devices in your MCL-Mobility Platform Account. Contact MCL-Technologies tech- should you have any questions regarding the compatibility of the MCL-Agent in your specific project/s.

**

CVE-2023-4990: MCL Mobility Platform as-a-Service

An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.

 

 Loading...

Skip to page contentSkip to chat

Skip to page contentSkip to chat

CVE-2023-37536: Knowledge Article View HCL - Customer Support

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Xiaomi Xiaomi Router allows Command Injection.

Xiaomi welcomes security experts and research teams to join our Vulnerability Disclosure Program (VDP). Xiaomi is commited to taking the responsibility to the security of our users around the world can enjoy a secure and reliable intelligent life.

For the security vulnerabilities disclosed in this page, Xiaomi does not imply any kind of guarantee or warranty, either express or implied, including the warranties of merchantability or fitness for a particular purpose or non-infringement. You understand the vulnerabilities disclosure information is just to provide reference for you to assess security risk and make appropriate decision. Your use of the document, by whatsoever means, will be totally at your own risk. In no event shall Xiaomi or be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Source

CVE