Skip to main content

Creative Cloud CVE-2019-7957

HIGH
2019-08-16 psirt@adobe.com
7.5
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Aug 16, 2019 - 17:15 nvd
HIGH 7.5

DescriptionNVD

Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service.

AnalysisAI

Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Technical ContextAI

Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service. Affected products include: Adobe Creative Cloud.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2017-3006 HIGH POC
8.8 Apr 12

Adobe Thor versions 3.9.5.353 and earlier have a vulnerability related to the use of improper resource permissions durin

CVE-2020-9669 CRITICAL
9.8 Jul 17

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a lack of exploit mitigations vulnerability. Rate

CVE-2019-8236 CRITICAL
9.8 Oct 23

Creative Cloud Desktop Application version 4.6.1 and earlier versions have Security Bypass vulnerability. Rated critical

CVE-2019-7959 CRITICAL
9.8 Aug 16

Creative Cloud Desktop Application versions 4.6.1 and earlier have a using components with known vulnerabilities vulnera

CVE-2019-7958 CRITICAL
9.8 Aug 16

Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissions vulnerability. Rate

CVE-2018-12829 CRITICAL
9.8 Aug 29

Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability. Rated critic

CVE-2018-4991 CRITICAL
9.8 May 19

Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validat

CVE-2016-1034 CRITICAL
9.1 Apr 12

The Sync Process in the JavaScript API for Creative Cloud Libraries in Adobe Creative Cloud Desktop Application before 3

CVE-2017-3007 HIGH
7.8 Apr 12

Adobe Thor versions 3.9.5.353 and earlier have a vulnerability in the directory search path used to find resources, rela

CVE-2016-6935 HIGH
7.8 Oct 13

Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8.0.310 on Windows allow

CVE-2023-26358 HIGH
7.8 Mar 22

Creative Cloud version 5.9.1 (and earlier) is affected by an Untrusted Search Path vulnerability that might allow attack

CVE-2020-24422 HIGH
7.8 Oct 21

Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an u

Share

CVE-2019-7957 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy