CVE-2021-40708
7.3
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Summary
Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An authenticated attacker could leverage this vulnerability to achieve read / write privileges to execute arbitrary code. User interaction is required to abuse this vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | GoCart | unspecified <= 7.3 | affected |
| Adobe | GoCart | unspecified <= None | affected |
Weaknesses
- CWE-379: Creation of Temporary File in Directory with Incorrect Permissions (CWE-379)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.