CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-28613 – Adobe Creative Cloud Arbitrary File Overwrite Vulnerability
https://notcve.org/view.php?id=CVE-2021-28613
Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Exploitation of this issue requires local access, administrator privileges and user interaction. Adobe Creative Cloud Desktop Application versiones 5.4 (y anteriores) está afectada por una vulnerabilidad en el manejo de archivos que podría permitir a un atacante sobrescribir arbitrariamente un archivo. Una explotación de este problema requiere acceso local, privilegios de administrador e interacción del usuario • https://helpx.adobe.com/security/products/creative-cloud/apsb21-76.html • CWE-379: Creation of Temporary File in Directory with Insecure Permissions •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-28594 – Creative Cloud Desktop installer Uncontrolled Search Path element could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-28594
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Uncontrolled Search Path Element vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Creative Cloud Desktop Application (instalador) versiones 2.4 (y anteriores), está afectada por una vulnerabilidad de Elemento de Ruta de Búsqueda no Controlada. Un atacante no autenticado podría aprovechar esta vulnerabilidad para lograr una ejecución de código arbitrario en el contexto del usuario actual. • https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-28633 – Adobe Creative Cloud Installer Arbitrary File Write
https://notcve.org/view.php?id=CVE-2021-28633
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system. Adobe Creative Cloud Desktop Application (instalador) versiones 2.4 (y anteriores), está afectada por una vulnerabilidad de creación de archivos temporales No Seguros. Un atacante podría aprovechar esta vulnerabilidad para causar una sobrescritura arbitraria de archivos en el contexto del usuario actual. • https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html • CWE-379: Creation of Temporary File in Directory with Insecure Permissions CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-21078 – Adobe Creative Cloud Unquoted Service Path in CCXProcess
https://notcve.org/view.php?id=CVE-2021-21078
Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted Service Path vulnerability in CCXProcess that could allow an attacker to achieve arbitrary code execution in the process of the current user. Exploitation of this issue requires user interaction Adobe Creative Cloud Desktop Application versiones 5.3 (y anteriores), está afectada por una vulnerabilidad de Ruta de Servicio Sin Comillas en CCXProcess que podría permitir a un atacante lograr una ejecución de código arbitraria en el proceso del usuario actual. Una explotación de este problema requiere una interacción del usuario • https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html • CWE-426: Untrusted Search Path •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2021-21068 – Adobe Creative Cloud installer arbitrary file overwrite vulnerability
https://notcve.org/view.php?id=CVE-2021-21068
Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an attacker to cause arbitrary file overwriting. Exploitation of this issue requires physical access and user interaction. Adobe Creative Cloud Desktop Application versiones 5.3 (y anteriores), está afectada por una vulnerabilidad de manejo de archivos que podría permitir a un atacante causar una sobrescritura de archivos arbitraria. Una explotación de este problema requiere acceso físico e interacción del usuario • https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html • CWE-379: Creation of Temporary File in Directory with Insecure Permissions •