CVE-2021-39828

MEDIUM Year: 2021
CVSS v3 Score
6.5
Medium
CVSS v2 Score
6.8
Medium
Weakness Type
CWE-379
View all →

Vulnerability Description

Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation to abuse this vulnerability.

Related Vulnerabilities

CVE-2021-28568

MEDIUM
CVSS:6.5(Medium)

Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability ...

CWE-3792021

CVE-2021-39827

MEDIUM
CVSS:6.5(Medium)

Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability ...

CWE-3792021

CVE-2021-28597

MEDIUM
CVSS:6.2(Medium)

Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions aga...

CWE-3792021

CVE-2021-28623

MEDIUM
CVSS:6.2(Medium)

Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions agai...

CWE-3792021

CVE-2021-21068

MEDIUM
CVSS:6.1(Medium)

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an attacker to cause arbitrary file overwriting. Exploitation of this i...

CWE-3792021

CVE-2021-28633

MEDIUM
CVSS:6.1(Medium)

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause ...

CWE-3792021