CVE-2021-21096

MEDIUM Year: 2021
CVSS v3 Score
5.5
Medium
CVSS v2 Score
2.1
Low
Weakness Type
CWE-285
View all →

Vulnerability Description

Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. A low-privileged attacker could leverage this vulnerability to achieve application denial-of-service in the context of the current user. Exploitation of this issue does not require user interaction.

Related Vulnerabilities

CVE-2017-8252

MEDIUM
CVSS:5.5(Medium)

Kernel can inject faults in computations during the execution of TrustZone leading to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electr...

CWE-2852017

CVE-2018-9867

MEDIUM
CVSS:5.5(Medium)

In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in the SonicWall Administrators user group attempt to download ...

CWE-2852018

CVE-2021-25382

MEDIUM
CVSS:5.5(Medium)

An improper authorization of using debugging command in Secure Folder prior to SMR Oct-2020 Release 1 allows unauthorized access to contents in Secure Folder via debugging command.

CWE-2852021

CVE-2021-25433

MEDIUM
CVSS:5.5(Medium)

Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL-2021 Release allows untrusted applications to perform factory reset using dbus signal.

CWE-2852021

CVE-2021-25459

MEDIUM
CVSS:5.5(Medium)

An improper access control vulnerability in sspInit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to start BlockchainTZService.

CWE-2852021

CVE-2021-25460

MEDIUM
CVSS:5.5(Medium)

An improper access control vulnerability in sspExit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to terminate BlockchainTZService.

CWE-2852021