Rewterz

Rewterz Threat Advisory – CVE-2019-0277 SAP HANA Extended Application Services

March 13, 2019
Rewterz

Rewterz Threat Advisory – CVE-2019-0271 SAP Netweaver ABAP Server XML External Entity Injection Vulnerability

March 13, 2019

Rewterz Threat Advisory – CVE-2019-7094 – Adobe Photoshop Arbitrary Code Execution Vulnerability

Severity

Low

Analysis Summary

A vulnerability has been discovered in Adobe Photoshop CC, which could allow for arbitrary code execution. This vulnerability exists due to a heap corruption issue. Successful exploitation of this vulnerability could result in an attacker executing arbitrary code in the context of the affected application. 

Impact

  • Arbitrary Code Execution.
  • Privileged access in context of current user.

Affected Products

Adobe Photoshop CC 19.1.7
Adobe Photoshop CC 19.1.6
Adobe Photoshop CC 20.0
Adobe Photoshop CC 19
Adobe Photoshop CC 18
Adobe Photoshop CC 16

Remediation

Vendor recommends to update to versions Photoshop CC 19.1.8 and Photoshop CC 20.0.4.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.