Main Vulnerability Database Vulnerabilities #VU53928

#VU53928 Insecure Temporary File in Premiere Elements - CVE-2021-28597

Published: June 8, 2021

Vulnerability identifier: #VU53928

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2021-28597

CWE-ID: CWE-377

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Premiere Elements

Software vendor:
Adobe

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists in the Adobe Photoshop Elements for Windows and macOS installer due to insecure temporary file creation. A local user can overwrite temporary files during installation and escalate privileges on the system.

The vulnerability affects Adobe Photoshop Elements installer version 5.2 and earlier.

Remediation

Install updates from vendor's website.

External links

https://helpx.adobe.com/security/products/photoshop_elements/apsb21-46.html

#VU53928 Insecure Temporary File in Premiere Elements - CVE-2021-28597

Description

Remediation

External links

Please verify you're human