Vulnerabilities > Adobe > Creative Cloud > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-21 | CVE-2020-24422 | Uncontrolled Search Path Element vulnerability in Adobe Creative Cloud Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 6.8 |
| 2020-03-25 | CVE-2020-3808 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Adobe Creative Cloud Creative Cloud Desktop Application versions 5.0 and earlier have a time-of-check to time-of-use (toctou) race condition vulnerability. | 5.8 |
| 2019-08-16 | CVE-2019-8063 | Information Exposure vulnerability in Adobe Creative Cloud Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. | 5.0 |
| 2019-08-16 | CVE-2019-7957 | Unspecified vulnerability in Adobe Creative Cloud Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. | 5.0 |
| 2019-05-24 | CVE-2019-7093 | Untrusted Search Path vulnerability in Adobe Creative Cloud Creative Cloud Desktop Application (installer) versions 4.7.0.400 and earlier have an insecure library loading (dll hijacking) vulnerability. | 6.8 |
| 2018-08-29 | CVE-2018-5003 | Untrusted Search Path vulnerability in Adobe Creative Cloud Adobe Creative Cloud Desktop Application before 4.5.5.342 (installer) has an insecure library loading (dll hijacking) vulnerability. | 6.8 |
| 2018-05-19 | CVE-2018-4992 | Improper Input Validation vulnerability in Adobe Creative Cloud Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper input validation vulnerability. | 4.6 |
| 2018-05-19 | CVE-2018-4873 | Unquoted Search Path or Element vulnerability in Adobe Creative Cloud Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Unquoted Search Path vulnerability. | 4.6 |
| 2017-04-12 | CVE-2017-3007 | Untrusted Search Path vulnerability in Adobe Creative Cloud Adobe Thor versions 3.9.5.353 and earlier have a vulnerability in the directory search path used to find resources, related to Creative Cloud desktop applications. | 4.6 |
| 2016-06-16 | CVE-2016-4158 | Permissions, Privileges, and Access Controls vulnerability in multiple products Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.7.0.272 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory. | 6.9 |