Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a local privilege escalation vulnerability that could allow an attacker to call functions against the installer to perform high privileged actions. Exploitation of this issue does not require user interaction.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-21-281/ | Third Party Advisory |
https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-21-281/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 05:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html - Patch, Vendor Advisory | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-21-281/ - Third Party Advisory |
07 Nov 2023, 03:29
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.3
v3 : unknown |
Information
Published : 2021-03-12 19:15
Updated : 2024-11-21 05:47
NVD link : CVE-2021-21069
Mitre link : CVE-2021-21069
CVE.ORG link : CVE-2021-21069
JSON object : View
Products Affected
adobe
- creative_cloud_desktop_application
microsoft
- windows
apple
- macos
CWE
CWE-20
Improper Input Validation