CVE-2018-12829

CWE-295Improper Certificate Validation3 documents3 sources
Severity
9.8CRITICAL
EPSS
1.5%
top 19.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Creative Cloud
Timeline
PublishedAug 29
Latest updateMay 14

Description

Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability. Successful exploitation could lead to privilege escalation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5adobe_creative_cloud_desktop_application_before_4.6.1Adobe Creative Cloud Desktop Application before 4.6.1

🔴Vulnerability Details

2
GHSA
GHSA-vrp5-7hmm-j77f: Adobe Creative Cloud Desktop Application before 42022-05-14
CVEList
CVE-2018-12829: Adobe Creative Cloud Desktop Application before 42018-08-29
CVE-2018-12829 (CRITICAL CVSS 9.8) | Adobe Creative Cloud Desktop Applic | cvebase.io