CVE-2021-28568
5.8
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N
Summary
Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability to achieve privilege escalation in the context of the current user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | GoCart | unspecified <= 7.1 | affected |
| Adobe | GoCart | unspecified <= None | affected |
Weaknesses
- CWE-379: Creation of Temporary File in Directory with Incorrect Permissions (CWE-379)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.