CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-2886

A memory corruption vulnerability exists in the .PSD parsing functionality of ACDSee Ultimate 10.0.0.292. A specially crafted .PSD file can cause an out of bounds write vulnerability resulting in potential code execution. An attacker can send a specific .PSD file to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.1%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/102133
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0393
http://www.securityfocus.com/bid/102133
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0393

Products affected by CVE-2017-2886

Acdsee » Ultimate » Version: 10.0.0.292

cpe:2.3:a:acdsee:ultimate:10.0.0.292

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2886

Products

Pricing

Contact Us