CVE-2021-28613

📊 7.4 HIGH⚡ 0.1%🎯 0 exploits

📅 Published Sep 27, 2021

📋 Status: Modified

Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Exploitation of this issue requires local access, administrator privileges and user interaction.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

2 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	adobe	creative cloud desktop application	≤ 5.4	Vulnerable	cpe:2.3:a:adobe:creative_cloud_desktop_application::::::::
💻OS	apple	macos	All versions	Not Vulnerable	cpe:2.3:o:apple:macos:-:::::::*

📱

adobe / creative cloud desktop application

Application

Vulnerable

Version: ≤ 5.4

CPE:

cpe:2.3:a:adobe:creative_cloud_desktop_application:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

Metrics

7.4 HIGHCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

HIGH

User Interaction:

REQUIRED

Confidentiality:

NONE

Integrity:

HIGH

Availability:

HIGH

Scope:

CHANGED

🔍 Technical Details

Analysis Status

Modified

CVSS Details

7.4 (HIGH)v3.1

Source: [email protected]

EPSS Details

0.1% (Minimal)28.9th percentile

Last updated: Oct 30, 2025

Exploitation probability within 30 days

Published Date

Sep 27, 2021 (4 years ago)

Last Modified

Nov 21, 2024 (11 months ago)

Security Weaknesses1

CWE-379

References2

NVDpatch