CVE-2021-28581

Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by an uncontrolled search path vulnerability that could result in elevation of privileges. Exploitation of this issue requires user interaction in that a victim must log on to the attacker's local machine.

Published: Sep 8, 2021
Updated: May 9, 2024
CVE: CVE-2021-28581
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.4
AV:L/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
adobe / creative_cloud	-	5.3.x

https://helpx.adobe.com/security/products/creative-cloud/apsb21-31.html

Vulnerability Database

289,697

CVE-2021-28581