CVE-2021-21070

Summary

Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges.

Affected Software

VendorProductVersion RangeStatus
AdobeRoboHelpunspecified <= 2020.0.3affected
AdobeRoboHelpunspecified <= Noneaffected

Weaknesses

  • CWE-427: Uncontrolled Search Path Element (CWE-427)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References