CVE-2021-21011: Uncontrolled Search Path Element in Adobe Captivate 2019
First published: Wed Jan 13 2021(Updated: )
Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with permissions to write to the file system could leverage this vulnerability to escalate privileges.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Captivate | <=11.5.1.499 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-21011?
CVE-2021-21011 has a high severity rating due to its potential for privilege escalation.
How do I fix CVE-2021-21011?
To fix CVE-2021-21011, update Adobe Captivate to version 11.5.1.499 or later.
What type of vulnerability is CVE-2021-21011?
CVE-2021-21011 is an uncontrolled search path element vulnerability.
Who is affected by CVE-2021-21011?
Adobe Captivate users with version 11.5.1.499 and earlier are affected by CVE-2021-21011.
What can an attacker do with CVE-2021-21011?
An attacker can use CVE-2021-21011 to escalate privileges if they have write permissions to the file system.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/severity
- agent/title
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- vendor/adobe
- canonical/adobe captivate
- version/adobe captivate/11.5.1.499
- vendor/microsoft
- canonical/microsoft windows