CVE-2021-28581

Summary

Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by an uncontrolled search path vulnerability that could result in elevation of privileges. Exploitation of this issue requires user interaction in that a victim must log on to the attacker's local machine.

Affected Software

VendorProductVersion RangeStatus
AdobeCreative Cloud (desktop component)unspecified <= 5.3affected
AdobeCreative Cloud (desktop component)unspecified <= Noneaffected

Weaknesses

  • CWE-427: Uncontrolled Search Path Element (CWE-427)

ADP Enrichment

CVE Program Container

Additional References

References