VYPR
Unrated severityNVD Advisory· Published Jan 13, 2021· Updated Apr 23, 2025

Heap buffer overflow when handling crafted font file could lead to arbitrary code execution

CVE-2021-21006

Description

Adobe Photoshop version 22.1 (and earlier) is affected by a heap buffer overflow vulnerability when handling a specially crafted font file. Successful exploitation could lead to arbitrary code execution. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • Adobe Inc./Photoshopllm-fuzzy2 versions
    <=22.1+ 1 more
    • (no CPE)range: <=22.1
    • (no CPE)range: 22.1 and earlier

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.