CVE-2021-28613

Description

Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Exploitation of this issue requires local access, administrator privileges and user interaction.

CvssV3 impact

Version

3.1

VectorString

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H

AttackVector

LOCAL

AttackComplexity

LOW

PrivilegesRequired

HIGH

UserInteraction

REQUIRED

Scope

CHANGED

ConfidentialityImpact

NONE

IntegrityImpact

HIGH

AvailabilityImpact

HIGH

BaseScore

7.4

BaseSeverity

HIGH

CvssV2 impact

AccessComplexity

MEDIUM

ConfidentialityImpact

NONE

AvailabilityImpact

PARTIAL

IntegrityImpact

PARTIAL

BaseScore

3.3

VectorString

AV:L/AC:M/Au:N/C:N/I:P/A:P

Version

2.0

AccessVector

LOCAL

Authentication

NONE