Skip to main content

Creative Cloud Desktop Application

13 CVEs product

Monthly

CVE-2024-34116 HIGH PATCH This Week

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Creative Cloud Desktop Application
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2021-43019 HIGH PATCH This Week

Adobe Creative Cloud version 5.5 (and earlier) are affected by a privilege escalation vulnerability in the resources leveraged by the Setup.exe service. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Incorrect Permission Assignment vulnerability could allow attackers to access resources due to misconfigured permissions.

Privilege Escalation Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
7.8
EPSS
2.1%
CVE-2021-43017 MEDIUM PATCH This Month

Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. Rated medium severity (CVSS 4.2), this vulnerability is low attack complexity.

Denial Of Service Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
4.2
EPSS
1.1%
CVE-2021-28547 HIGH PATCH This Week

Adobe Creative Cloud Desktop Application for macOS version 5.3 (and earlier) is affected by a privilege escalation vulnerability that could allow a normal user to delete the OOBE directory and get. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Apple Privilege Escalation Adobe Creative Cloud Desktop Application
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2021-28613 HIGH PATCH This Week

Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Rated high severity (CVSS 7.4), this vulnerability is low attack complexity.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
7.4
EPSS
0.5%
CVE-2021-28633 MEDIUM This Month

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2021-28594 HIGH This Week

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Uncontrolled Search Path Element vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
7.8
EPSS
2.7%
CVE-2021-21078 MEDIUM This Month

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted Service Path vulnerability in CCXProcess that could allow an attacker to achieve arbitrary code execution. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

RCE Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
6.5
EPSS
1.1%
CVE-2021-21069 HIGH PATCH This Week

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a local privilege escalation vulnerability that could allow an attacker to call functions against the installer to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Adobe Creative Cloud Desktop Application
NVD
CVSS 3.0
7.8
EPSS
2.5%
CVE-2021-21068 MEDIUM This Month

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an attacker to cause arbitrary file overwriting. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
CVSS 3.1
6.1
EPSS
0.6%
CVE-2020-9682 CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Creative Cloud Desktop Application
NVD
CVSS 3.1
9.8
EPSS
4.3%
CVE-2020-9671 CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have an insecure file permissions vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Privilege Escalation Creative Cloud Desktop Application
NVD
CVSS 3.1
9.8
EPSS
4.0%
CVE-2020-9670 CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Privilege Escalation Creative Cloud Desktop Application
NVD
CVSS 3.1
9.8
EPSS
3.6%
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Creative Cloud Desktop Application
NVD
EPSS 2% CVSS 7.8
HIGH PATCH This Week

Adobe Creative Cloud version 5.5 (and earlier) are affected by a privilege escalation vulnerability in the resources leveraged by the Setup.exe service. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Incorrect Permission Assignment vulnerability could allow attackers to access resources due to misconfigured permissions.

Privilege Escalation Adobe Creative Cloud Desktop Application
NVD
EPSS 1% CVSS 4.2
MEDIUM PATCH This Month

Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. Rated medium severity (CVSS 4.2), this vulnerability is low attack complexity.

Denial Of Service Adobe Creative Cloud Desktop Application
NVD
EPSS 1% CVSS 7.8
HIGH PATCH This Week

Adobe Creative Cloud Desktop Application for macOS version 5.3 (and earlier) is affected by a privilege escalation vulnerability that could allow a normal user to delete the OOBE directory and get. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Apple Privilege Escalation Adobe +1
NVD
EPSS 0% CVSS 7.4
HIGH PATCH This Week

Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Rated high severity (CVSS 7.4), this vulnerability is low attack complexity.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
EPSS 3% CVSS 7.8
HIGH This Week

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Uncontrolled Search Path Element vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Adobe Creative Cloud Desktop Application
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted Service Path vulnerability in CCXProcess that could allow an attacker to achieve arbitrary code execution. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

RCE Adobe Creative Cloud Desktop Application
NVD
EPSS 2% CVSS 7.8
HIGH PATCH This Week

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a local privilege escalation vulnerability that could allow an attacker to call functions against the installer to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Adobe Creative Cloud Desktop Application
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an attacker to cause arbitrary file overwriting. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Adobe Creative Cloud Desktop Application
NVD
EPSS 4% CVSS 9.8
CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Creative Cloud Desktop Application
NVD
EPSS 4% CVSS 9.8
CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have an insecure file permissions vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Privilege Escalation Creative Cloud Desktop Application
NVD
EPSS 4% CVSS 9.8
CRITICAL Act Now

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Privilege Escalation Creative Cloud Desktop Application
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy