CVE Database · CVE-2021-28633
CVSS v3.1
6.1
EPSS
0.49%
Published
Aug 24, 2021
Modified
Nov 21, 2024
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system.
CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:HWeaknesses (CWE)
Affected Products (1)
References (2)