Lucene search
AdobeCVELIST:CVE-2021-21070HistoryApr 19, 2021 - 12:28 p.m.
CVE-2021-21070 Privilege Escalation Vulnerability in Adobe RoboHelp
2021-04-1912:28:23
CWE-427
adobe
www.cve.org
5
adobe
robohelp
privilege escalation
vulnerability
2020.0.3
CVSS3
6.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
25.7%
Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges.
CNA Affected
[
{
"product": "RoboHelp",
"vendor": "Adobe",
"versions": [
{
"lessThanOrEqual": "2020.0.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThanOrEqual": "None",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-21070
2021-04-19 13:15:15
nessus
nessus
Adobe RoboHelp 2020 < RH2020.0.4 Privilege Escalation (APSB21-20)
2021-04-16 00:00:00
adobe
adobe
APSB21-20 Security update available for RoboHelp
2021-04-13 00:00:00
prion
prion
Path traversal
2021-04-19 13:15:00
cve
cve
CVE-2021-21070
2021-04-19 13:15:15
threatpost
threatpost
Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop
2021-04-13 16:40:49
CVSS3
6.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
25.7%
Related for CVELIST:CVE-2021-21070