Multiple vulnerabilities in Adobe Creative Cloud Desktop
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2021-28633 CVE-2021-28594 |
| CWE-ID | CWE-377 CWE-427 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Creative Cloud Desktop Application Universal components / Libraries / Software for developers |
| Vendor | Adobe |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Insecure Temporary File
EUVDB-ID: #VU53960
Risk: Low
CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-28633
CWE-ID:
CWE-377 - Insecure Temporary File
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insecure temporary files handling within the installer component in the Creative Cloud Desktop. A local user can overwrite temporary files during installation and execute privileges on the system.
Install updates from vendor's website.
Vulnerable software versionsCreative Cloud Desktop Application: 5.0.0.354 - 5.4.3.544
CPE2.3- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.0.0.354:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.1.0.407:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.2.0.436:*:*:*:*:*:*:*
https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Insecure DLL loading
EUVDB-ID: #VU53961
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-28594
CWE-ID:
CWE-427 - Uncontrolled Search Path Element
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to installer for Creative Cloud Desktop loads DLL libraries in an insecure manner. A remote attacker can place a specially crafted .dll file on a remote SMB fileshare, trick the victim into launching the installation file from that directory and execute arbitrary code on victim's system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsCreative Cloud Desktop Application: 5.0 - 5.4.3.544
CPE2.3- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.0.0.354:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:creative_cloud_desktop_application:5.1.0.407:*:*:*:*:*:*:*
https://helpx.adobe.com/security/products/creative-cloud/apsb21-41.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
