Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-28633
HistoryAug 24, 2021 - 7:15 p.m.

CVE-2021-28633

2021-08-2419:15:13
CWE-379
CWE-668
[email protected]
web.nvd.nist.gov
9
adobe
creative cloud
desktop application
vulnerability
temporary file
overwriting
exploitation

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

6.1

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

EPSS

0.001

Percentile

32.6%

JSON

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system.

Affected configurations

Nvd
Node
adobecreative_cloud_desktop_applicationRange2.4
VendorProductVersionCPE
adobecreative_cloud_desktop_application*cpe:2.3:a:adobe:creative_cloud_desktop_application:*:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
cve 1
nessus 2
adobe 1
prion
prion
Design/Logic Flaw
2021-08-24 19:15:00
cvelist
cvelist
CVE-2021-28633 Adobe Creative Cloud Installer Arbitrary File Write
2021-08-24 18:18:09
cve
cve
CVE-2021-28633
2021-08-24 19:15:13
nessus
nessus
Adobe Creative Cloud < 2.5 Multiple Vulnerabilities (APSB21-41)
2022-05-10 00:00:00
Adobe Creative Cloud < 2.5 Multiple Vulnerabilities (APSB21-41) (macOS)
2022-05-10 00:00:00
adobe
adobe
APSB21-41 Security update available for Adobe Creative Cloud Desktop Application
2021-06-08 00:00:00

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

6.1

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

EPSS

0.001

Percentile

32.6%

JSON
Related for NVD:CVE-2021-28633
prion1cvelist1cve1nessus2adobe1