CVE-2021-28581

Beschreibung:
Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by an uncontrolled search path vulnerability that could result in elevation of privileges. Exploitation of this issue requires user interaction in that a victim must log on to the attacker’s local machine.

CWE: CWE-427

CVSS-Bewertung
CVSS 2: MEDIUM – 4.4 (Version: 2.0)
CVSS 3: HIGH – 7.3 (Version: 3.1)

Links:

NVD – CVE-2021-28581
CVE – CVE-2021-28581

Link (max. 20) Quelle Tags
https://helpx.adobe.com/security/products/creative-cloud/apsb21-31.html MISC Vendor Advisory
http://xenbits.xen.org/xsa/advisory-384.html CONFIRM Vendor Advisory
[oss-security] 20210908 Xen Security Advisory 384 v3 (CVE-2021-28701) – Another race in XENMAPSPACE_grant_table handling MLIST Mailing List Third Party Advisory
https://support.apple.com/en-us/HT212532 MISC Vendor Advisory
https://support.apple.com/en-us/HT212533 MISC Vendor Advisory
https://support.apple.com/en-us/HT212533 MISC Vendor Advisory

Quelle: NVD – CVE-2021-28581
Datum Veröffentlichung: 2021-09-08T14:15Z, Datum letzte Änderung: 2021-09-14T14:35Z