{"containers":{"cna":{"affected":[{"product":"Photoshop","vendor":"Adobe","versions":[{"lessThanOrEqual":"22.5.1  and earlier versions","status":"affected","version":"unspecified","versionType":"custom"},{"lessThanOrEqual":"None","status":"affected","version":"unspecified","versionType":"custom"}]}],"datePublic":"2021-10-26T00:00:00.000Z","descriptions":[{"lang":"en","value":"Adobe Photoshop version 22.5.1 (and earlier versions ) is affected by an Access of Memory Location After End of Buffer vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"REQUIRED","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-788","description":"Access of Memory Location After End of Buffer (CWE-788)","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-06-15T19:45:25.000Z","orgId":"078d4453-3bcd-4900-85e6-15281da43538","shortName":"adobe"},"references":[{"tags":["x_refsource_MISC"],"url":"https://helpx.adobe.com/security/products/photoshop/apsb21-109.html"}],"source":{"discovery":"EXTERNAL"},"title":"Adobe Photoshop Memory Corruption could lead to Arbitrary code execution","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@adobe.com","DATE_PUBLIC":"2021-10-26T23:00:00.000Z","ID":"CVE-2021-42735","STATE":"PUBLIC","TITLE":"Adobe Photoshop Memory Corruption could lead to Arbitrary code execution"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Photoshop","version":{"version_data":[{"version_affected":"<=","version_value":"22.5.1  and earlier versions"},{"version_affected":"<=","version_value":"None"},{"version_affected":"<=","version_value":"None"},{"version_affected":"<=","version_value":"None"}]}}]},"vendor_name":"Adobe"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Adobe Photoshop version 22.5.1 (and earlier versions ) is affected by an Access of Memory Location After End of Buffer vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability."}]},"impact":{"cvss":{"attackComplexity":"Low","attackVector":"Local","availabilityImpact":"High","baseScore":7.8,"baseSeverity":"High","confidentialityImpact":"High","integrityImpact":"High","privilegesRequired":"None","scope":"Unchanged","userInteraction":"Required","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Access of Memory Location After End of Buffer (CWE-788)"}]}]},"references":{"reference_data":[{"name":"https://helpx.adobe.com/security/products/photoshop/apsb21-109.html","refsource":"MISC","url":"https://helpx.adobe.com/security/products/photoshop/apsb21-109.html"}]},"source":{"discovery":"EXTERNAL"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T03:38:50.114Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://helpx.adobe.com/security/products/photoshop/apsb21-109.html"}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-04-23T13:08:48.729172Z","id":"CVE-2021-42735","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-04-23T18:12:28.551Z"}}]},"cveMetadata":{"assignerOrgId":"078d4453-3bcd-4900-85e6-15281da43538","assignerShortName":"adobe","cveId":"CVE-2021-42735","datePublished":"2022-06-15T19:45:25.915Z","dateReserved":"2021-10-19T00:00:00.000Z","dateUpdated":"2025-04-23T18:12:28.551Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}