CVE-2017-3006
First published: Wed Apr 12 2017(Updated: )
Adobe Thor versions 3.9.5.353 and earlier have a vulnerability related to the use of improper resource permissions during the installation of Creative Cloud desktop applications.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Creative Cloud | <=3.9.5.353 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-3006?
CVE-2017-3006 has a severity rating of 8.8, indicating critical vulnerability.
How do I fix CVE-2017-3006?
To fix CVE-2017-3006, upgrade to Adobe Thor versions later than 3.9.5.353.
What applications are affected by CVE-2017-3006?
CVE-2017-3006 affects Adobe Creative Cloud versions 3.9.5.353 and earlier.
What kind of vulnerability is CVE-2017-3006?
CVE-2017-3006 is a privilege escalation vulnerability caused by improper resource permissions.
Is my Windows operating system affected by CVE-2017-3006?
No, Microsoft Windows itself is not affected; the vulnerability lies within Adobe Creative Cloud.
- collector/nvd-index
- vendor/adobe
- product/creative cloud
- canonical/adobe creative cloud
- vendor/microsoft
- product/windows
- canonical/microsoft windows