Lucene search
K

5 matches found

CVE
CVE
added 2018/08/29 1:0 p.m.1788 views

CVE-2018-12829

Adobe Creative Cloud Desktop Application prior to version 4.6.1 contains an improper certificate validation vulnerability that could lead to privilege escalation. Affected product: Adobe Creative Cloud Desktop Application (Windows/macOS) with 4.6.0 and earlier. Root cause: improper certificate va...

9.8CVSS9.3AI score0.0507EPSS
CVE
CVE
added 2023/03/22 12:0 a.m.1271 views

CVE-2023-26358

The CVE-2023-26358 issue affects Adobe Creative Cloud Desktop (Windows) versions 5.9.1 and earlier, caused by an Untrusted Search Path that could let an attacker point the application to a malicious resource and execute arbitrary code. Descriptions consistently state local execution potential wit...

8.6CVSS7.7AI score0.00355EPSS
CVE
CVE
added 2018/08/29 1:0 p.m.203 views

CVE-2018-5003

Adobe Creative Cloud Desktop Application installer (Windows) prior to version 4.5.5.342 is affected by an insecure library loading (DLL hijacking) vulnerability (CVE-2018-5003). The root cause is DLL loading during installation, enabling privilege escalation if an attacker can place a malicious l...

7.8CVSS8.1AI score0.04871EPSS
CVE
CVE
added 2025/12/09 8:39 p.m.32 views

CVE-2025-64896

CVE-2025-64896 affects Creative Cloud Desktop versions 6.4.0.361 and earlier. The vulnerability is a Creation of Temporary File in Directory with Incorrect Permissions (CWE-379) that could cause application denial-of-service. Exploitation requires a user to open a malicious file, enabling local i...

5.5CVSS6.2AI score0.00155EPSS
CVE
CVE
added 2025/10/15 4:21 p.m.29 views

CVE-2025-54271

CVE-2025-54271 affects Adobe Creative Cloud Desktop 6.7.0.278 and earlier. It is a Time-of-check Time-of-use (TOCTOU) race condition that could allow arbitrary file system writes by a low-privileged attacker, with no user interaction required. Connected sources (Red Hat, NVD, ENISA/EUVD, CNVD, et...

5.6CVSS6.4AI score0.0013EPSS