Adobe Security Bulletin

Security updates available for Adobe Photoshop CC | APSB19-15

Bulletin ID	Date Published	Priority
APSB19-15	March 12, 2019	3

Adobe has released updates for Photoshop CC for Windows and macOS. These updates resolve a critical vulnerability in Photoshop CC 19.1.7 (and earlier 19.x versions) as well as 20.0.2 (and earlier 20.x versions). Successful exploitation could lead to arbitrary code execution in the context of the current user.

Product	Affected version	Platform
Photoshop CC	19.1.7 and earlier	Windows and macOS
Photoshop CC	20.0.2 and earlier	Windows and macOS

Adobe recommends updating via the Creative Cloud desktop app’s update mechanism. For more information, please reference this help page.

Product	Updated versions	Platform
Photoshop CC	19.1.8	Windows and macOS
Photoshop CC	20.0.4	Windows and macOS

Note:

For managed environments, IT administrators can use the Admin Console to deploy Creative Cloud applications to end users. Refer to this help page for more information.

Vulnerability Category	Vulnerability Impact	Severity	CVE Number
Heap corruption	Arbitrary code execution	Critical	CVE-2019-7094

Adobe would like to thank Francis Provencher working with Trend Micro’s Zero Day Initiative for reporting this issue and for working with Adobe to help protect our customers.

Adobe Security Bulletin

Summary

Affected Product Versions

Solution

Vulnerability details

Acknowledgments

Ask the Community

Contact Us