Login Sign Up

CVE-2019-7990

9.8 CRITICAL
Remote Code Execution

📋 TL;DR

This CVE describes a heap overflow vulnerability in Adobe Photoshop CC that allows attackers to execute arbitrary code on affected systems. Users running Photoshop CC versions 19.1.8 and earlier or 20.0.5 and earlier are vulnerable. Successful exploitation could give attackers full control of the compromised system.

💻 Affected Systems

Products:
  • Adobe Photoshop CC
Versions: 19.1.8 and earlier, 20.0.5 and earlier
Operating Systems: Windows, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: All default installations of affected versions are vulnerable. No special configuration required for exploitation.

📦 What is this software?

Photoshop Cc by Adobe

View all CVEs affecting Photoshop Cc →

Photoshop Cc by Adobe

View all CVEs affecting Photoshop Cc →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with attacker gaining full control, data theft, ransomware deployment, and lateral movement within the network.

🟠

Likely Case

Local privilege escalation leading to data exfiltration, malware installation, or system disruption for targeted attacks.

🟢

If Mitigated

Limited impact with proper network segmentation, application whitelisting, and user privilege restrictions in place.

🌐 Internet-Facing: LOW with brief explanation
🏢 Internal Only: MEDIUM with brief explanation

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction (opening malicious file). No public exploit code available at disclosure.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Photoshop CC 19.1.9 and 20.0.6

Vendor Advisory: https://helpx.adobe.com/security/products/photoshop/apsb19-44.html

Restart Required: Yes

Instructions:

1. Open Adobe Creative Cloud application. 2. Navigate to 'Apps' tab. 3. Find Photoshop CC and click 'Update'. 4. Restart Photoshop after update completes.

🔧 Temporary Workarounds

Restrict Photoshop file handling

all

Configure system to prevent Photoshop from opening files from untrusted sources

Application control policies

windows

Implement application whitelisting to restrict Photoshop execution to trusted locations

🧯 If You Can't Patch

  • Isolate Photoshop workstations from critical network segments
  • Implement strict file validation procedures for all Photoshop files

🔍 How to Verify

Check if Vulnerable:

Check Photoshop version via Help > About Photoshop. If version is 19.1.8 or earlier, or 20.0.5 or earlier, system is vulnerable.

Check Version:

On Windows: wmic product where name='Adobe Photoshop CC' get version. On macOS: /Applications/Adobe Photoshop CC [version]/Adobe Photoshop CC.app/Contents/Info.plist

Verify Fix Applied:

Verify Photoshop version is 19.1.9 or later for 19.x branch, or 20.0.6 or later for 20.x branch.

📡 Detection & Monitoring

Log Indicators:

  • Photoshop crash logs with heap corruption errors
  • Unexpected process creation from Photoshop.exe

Network Indicators:

  • Unusual outbound connections from Photoshop process
  • DNS queries to suspicious domains

SIEM Query:

process_name='Photoshop.exe' AND (event_id=1000 OR event_id=1001) AND error_code CONTAINS '0xC0000005'

📊 Metadata

CVE ID: CVE-2019-7990
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: August 26, 2019
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-7990, you might also want to check these:

CVE-2019-5684 10.0

This vulnerability in NVIDIA Windows GPU Display Drivers allows specially crafted DirectX shaders to...

Same vulnerability type (CWE-787)
CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2019-5049 10.0

This vulnerability allows an attacker to execute arbitrary code on systems with vulnerable AMD graph...

Same vulnerability type (CWE-787)