Uncontrolled Search Path Element Vulnerability in Adobe Photoshop for Windows (CVE-2020-9686)

Uncontrolled Search Path Element Vulnerability in Adobe Photoshop for Windows (CVE-2020-9686)

CVE-2020-24420 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Adobe Photoshop for Windows version 21.2.1 (and earlier) is affected by an uncontrolled search path element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Learn more about our User Device Pen Test.