CVE-2021-28633

Summary

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system.

Affected Software

VendorProductVersion RangeStatus
AdobeCreative Cloud (desktop component)unspecified <= 2.4affected
AdobeCreative Cloud (desktop component)unspecified <= Noneaffected

Weaknesses

  • CWE-379: Creation of Temporary File in Directory with Incorrect Permissions (CWE-379)

ADP Enrichment

CVE Program Container

Additional References

References