Creative Cloud Security Vulnerabilities and Issues — Creative Cloud CVE List

Lucene search

AdobeCreative Cloud

12 matches found

CVE•added 2020/10/21 8:15 p.m.•4246 views

CVE-2020-24422

Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha...

7.8CVSS7.5AI score0.09579EPSS

CVE•added 2016/10/13 7:59 p.m.•1082 views

CVE-2016-6935

Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8.0.310 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory.

7.8CVSS7.6AI score0.00219EPSS

CVE•added 2016/06/16 2:59 p.m.•540 views

CVE-2016-4157

Untrusted search path vulnerability in the installer in Adobe Creative Cloud Desktop Application before 3.7.0.272 on Windows allows local users to gain privileges via a Trojan horse resource in an unspecified directory.

7.3CVSS7.1AI score0.00163EPSS

CVE•added 2019/05/24 7:29 p.m.•534 views

CVE-2019-7093

Creative Cloud Desktop Application (installer) versions 4.7.0.400 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.

7.8CVSS7.4AI score0.01429EPSS

CVE•added 2018/08/29 1:29 p.m.•190 views

CVE-2018-5003

Adobe Creative Cloud Desktop Application before 4.5.5.342 (installer) has an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.

7.8CVSS8.1AI score0.03743EPSS

CVE•added 2019/08/16 5:15 p.m.•174 views

CVE-2019-8063

Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. Successful exploitation could lead to information leakage.

7.5CVSS8.2AI score0.03454EPSS

CVE•added 2019/08/16 5:15 p.m.•165 views

CVE-2019-7957

Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service.

7.5CVSS8.3AI score0.01407EPSS

CVE•added 2021/09/08 2:15 p.m.•80 views

CVE-2021-28581

Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by an uncontrolled search path vulnerability that could result in elevation of privileges. Exploitation of this issue requires user interaction in that a victim must log on to the attacker's local machine.

7.3CVSS6.9AI score0.00115EPSS

CVE•added 2017/04/12 2:59 p.m.•67 views

CVE-2017-3007

Adobe Thor versions 3.9.5.353 and earlier have a vulnerability in the directory search path used to find resources, related to Creative Cloud desktop applications.

7.8CVSS8.1AI score0.00268EPSS

CVE•added 2018/05/19 5:29 p.m.•67 views

CVE-2018-4873

Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Unquoted Search Path vulnerability. Successful exploitation could lead to local privilege escalation.

7.8CVSS8.4AI score0.00375EPSS

CVE•added 2018/05/19 5:29 p.m.•66 views

CVE-2018-4992

Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper input validation vulnerability. Successful exploitation could lead to local privilege escalation.

7.8CVSS8.4AI score0.00306EPSS

CVE•added 2016/06/16 2:59 p.m.•44 views

CVE-2016-4158

Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.7.0.272 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory.

7.3CVSS7.2AI score0.01961EPSS