New Search

Multiple vulnerabilities on Creative Cloud Desktop Application versions 4.6.1 and earlier

oval:org.cisecurity:def:8937

Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. Successful exploitation could lead to information leakage. (CVE-2019-8063) Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service. (CVE-2019-7957) Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissions vulnerability. Successful exploitation could lead to privilege escalation. (CVE-2019-7958) Creative Cloud Desktop Application versions 4.6.1 and earlier have a using components with known vulnerabilities vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2019-7959) Creative Cloud Desktop Application version 4.6.1 and earlier versions have Security Bypass vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user. (CVE-2019-8236)

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2019
Class:
vulnerability
Reference(s):
  • APSB19-39
  • CVE-2019-8063
  • CVE-2019-7957
  • CVE-2019-7958
  • CVE-2019-7959
  • CVE-2019-8236
Product(s):
  • Adobe Creative Cloud