CVE-2021-28633

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system.
Configurations

Configuration 1 (hide)

cpe:2.3:a:adobe:creative_cloud_desktop_application:*:*:*:*:*:*:*:*

History

26 Jun 2023, 19:16

Type Values Removed Values Added
CWE NVD-CWE-Other CWE-668

31 Aug 2021, 19:38

Type Values Removed Values Added
CWE CWE-379 NVD-CWE-Other
CVSS v2 : unknown
v3 : unknown
v2 : 3.6
v3 : 6.1
CPE cpe:2.3:a:adobe:creative_cloud_desktop_application:*:*:*:*:*:*:*:*
References (MISC) https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html - (MISC) https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html - Vendor Advisory

24 Aug 2021, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-08-24 19:15

Updated : 2024-02-04 21:47


NVD link : CVE-2021-28633

Mitre link : CVE-2021-28633

CVE.ORG link : CVE-2021-28633


JSON object : View

Products Affected

adobe

  • creative_cloud_desktop_application
CWE
CWE-668

Exposure of Resource to Wrong Sphere

CWE-379

Creation of Temporary File in Directory with Insecure Permissions