CVE-2021-21011

CWE-4273 documents3 sources
Severity
7.0HIGH
EPSS
1.0%
top 23.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Captivate
Timeline
PublishedJan 13
Latest updateMay 24

Description

Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with permissions to write to the file system could leverage this vulnerability to escalate privileges.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages2 packages

NVDadobe/captivate11.5.1.499
CVEListV5adobe/captivate11.5.1.499 and earlier

🔴Vulnerability Details

2
GHSA
GHSA-8h8c-92jm-7x7x: Adobe Captivate 2019 version 112022-05-24
CVEList
Uncontrolled Search Path Element in Adobe Captivate 20192021-01-13
CVE-2021-21011 (HIGH CVSS 7) | Adobe Captivate 2019 version 11.5.1 | cvebase.io