Lucene search
AdobeCVELIST:CVE-2021-28581HistorySep 08, 2021 - 1:29 p.m.
CVE-2021-28581 Adobe Creative Cloud Desktop uncontrolled search path element vulnerability could lead to local privilege escalation
2021-09-0813:29:24
CWE-427
adobe
www.cve.org
5
adobe creative cloud
uncontrolled search path
local privilege escalation
cve-2021-28581
vulnerability
elevation of privileges
user interaction
local machine
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.0%
Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by an uncontrolled search path vulnerability that could result in elevation of privileges. Exploitation of this issue requires user interaction in that a victim must log on to the attacker’s local machine.
CNA Affected
[
{
"product": "Creative Cloud (desktop component)",
"vendor": "Adobe",
"versions": [
{
"lessThanOrEqual": "5.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThanOrEqual": "None",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-28581
2021-09-08 14:15:08
nessus
nessus
Adobe Creative Cloud Desktop < 5.4.3 Privilege Escalation (APSB21-31)
2021-05-13 00:00:00
prion
prion
Privilege escalation
2021-09-08 14:15:00
adobe
adobe
cve
cve
CVE-2021-28581
2021-09-08 14:15:08
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.0%
Related for CVELIST:CVE-2021-28581