What is the severity of CVE-2021-43017?

CVE-2021-43017 has a severity rating that indicates a potential denial of service vulnerability in Adobe Creative Cloud version 5.5 and earlier.

How do I fix CVE-2021-43017?

To fix CVE-2021-43017, update your Adobe Creative Cloud Desktop Application to the latest version beyond 5.5.

What is affected by CVE-2021-43017?

CVE-2021-43017 affects Adobe Creative Cloud Desktop Application versions 5.5 and earlier.

Who could exploit CVE-2021-43017?

An authenticated attacker with root privileges could exploit CVE-2021-43017 to achieve denial of service.

When was CVE-2021-43017 reported?

CVE-2021-43017 was reported in November 2021 as part of the Adobe security bulletins.

Vulnerability/
CVE-2021-43017

medium

4.2

CWE

379

18/11/2021

21/11/2024

CVE-2021-43017: Adobe Creative Cloud DLL Hijacking Local Application Denial of Service

First published: Thu Nov 18 2021(Updated: )

Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. An authenticated attacker with root privileges could leverage this vulnerability to achieve denial of service by planting a malicious file on the victim's local machine. User interaction is required before product installation to abuse this vulnerability.

Credit: psirt@adobe.com psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Creative Cloud Desktop Application	<=5.5
Apple macOS
All of
Adobe Creative Cloud Desktop Application	<=5.5
Apple macOS

Remedy

https://helpx.adobe.com/security/products/creative-cloud/apsb21-111.html

Never miss a vulnerability like this again

Reference Links

https://helpx.adobe.com/security/products/creative-cloud/apsb21-111.html

Frequently Asked Questions

What is the severity of CVE-2021-43017?
CVE-2021-43017 has a severity rating that indicates a potential denial of service vulnerability in Adobe Creative Cloud version 5.5 and earlier.
How do I fix CVE-2021-43017?
To fix CVE-2021-43017, update your Adobe Creative Cloud Desktop Application to the latest version beyond 5.5.
What is affected by CVE-2021-43017?
CVE-2021-43017 affects Adobe Creative Cloud Desktop Application versions 5.5 and earlier.
Who could exploit CVE-2021-43017?
An authenticated attacker with root privileges could exploit CVE-2021-43017 to achieve denial of service.
When was CVE-2021-43017 reported?
CVE-2021-43017 was reported in November 2021 as part of the Adobe security bulletins.

agent/type
agent/severity
agent/title
agent/remedy
agent/references
agent/weakness
agent/description
collector/mitre-cve
source/MITRE
agent/first-publish-date
agent/last-modified-date
agent/author
agent/event
agent/softwarecombine
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
vendor/adobe
canonical/adobe creative cloud desktop application
version/adobe creative cloud desktop application/5.5
vendor/apple
canonical/apple macos

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.