5 matches found
CVE-2018-12829
Adobe Creative Cloud Desktop Application prior to version 4.6.1 contains an improper certificate validation vulnerability that could lead to privilege escalation. Affected product: Adobe Creative Cloud Desktop Application (Windows/macOS) with 4.6.0 and earlier. Root cause: improper certificate va...
CVE-2023-26358
The CVE-2023-26358 issue affects Adobe Creative Cloud Desktop (Windows) versions 5.9.1 and earlier, caused by an Untrusted Search Path that could let an attacker point the application to a malicious resource and execute arbitrary code. Descriptions consistently state local execution potential wit...
CVE-2018-5003
Adobe Creative Cloud Desktop Application installer (Windows) prior to version 4.5.5.342 is affected by an insecure library loading (DLL hijacking) vulnerability (CVE-2018-5003). The root cause is DLL loading during installation, enabling privilege escalation if an attacker can place a malicious l...
CVE-2025-64896
CVE-2025-64896 affects Creative Cloud Desktop versions 6.4.0.361 and earlier. The vulnerability is a Creation of Temporary File in Directory with Incorrect Permissions (CWE-379) that could cause application denial-of-service. Exploitation requires a user to open a malicious file, enabling local i...
CVE-2025-54271
CVE-2025-54271 affects Adobe Creative Cloud Desktop 6.7.0.278 and earlier. It is a Time-of-check Time-of-use (TOCTOU) race condition that could allow arbitrary file system writes by a low-privileged attacker, with no user interaction required. Connected sources (Red Hat, NVD, ENISA/EUVD, CNVD, et...