CVE-2021-43017: Adobe Creative Cloud DLL Hijacking Local Application Denial of Service
First published: Thu Nov 18 2021(Updated: )
Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. An authenticated attacker with root privileges could leverage this vulnerability to achieve denial of service by planting a malicious file on the victim's local machine. User interaction is required before product installation to abuse this vulnerability.
Credit: psirt@adobe.com psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Creative Cloud Desktop Application | <=5.5 | |
| Apple macOS | ||
| All of | ||
| Adobe Creative Cloud Desktop Application | <=5.5 | |
| Apple macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- collector/nvd-index
- agent/type
- agent/severity
- agent/title
- agent/remedy
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/adobe
- canonical/adobe creative cloud desktop application
- version/adobe creative cloud desktop application/5.5
- vendor/apple
- canonical/apple macos