VDB
CVE-2023-25861
CVE-2023-25861
PUBLISHED
CVSS 7.800000190734863 HIGH
Illustrator version 26.5.2 (and earlier) and 27.2.0 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
EPSS 0.19% · 41.2th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.19%
41.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| adobe | illustrator | 0, 0 |
| Adobe | Illustrator | unspecified, unspecified, unspecified |
| adobe | illustrator | 0, 27.0.0 |
Exploit Intelligence
Timeline
- Mar 22, 2023 CVE Published
- Mar 23, 2023 EPSS Score
- Apr 23, 2023 EPSS Score
- Apr 24, 2023 EPSS Score
- May 8, 2023 EPSS Score
- Jun 8, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Aug 1, 2023 EPSS Score
- Aug 9, 2023 EPSS Score
- Aug 25, 2023 EPSS Score
- Sep 12, 2023 EPSS Score
- Sep 27, 2023 EPSS Score