CVE-2021-28623

Summary

Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions against the installer to perform high privileged actions. Exploitation of this issue does not require user interaction.

Affected Software

VendorProductVersion RangeStatus
AdobePremiereunspecified <= 5.2affected
AdobePremiereunspecified <= Noneaffected

Weaknesses

  • CWE-379: Creation of Temporary File in Directory with Incorrect Permissions (CWE-379)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References