TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities

Cisco Talos disclosed multiple vulnerabilities affecting TP-Link Archer AX53 (several CVEs including a stack-based buffer overflow and multiple OpenVPN/dnsmasq-related command-injection and config-read flaws enabling remote code execution or arbitrary file access), an Adobe Photoshop installer privilege-escalation, an OpenVPN TLS Crypt v2 client key extraction reachable-assertion DoS, and a Norton VPN installer privilege-escalation; most were patched by vendors, with Norton observed in-use prior to patching.