Adobe Captivate vulnerabilities

5 known vulnerabilities affecting adobe/captivate.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3

Vulnerabilities

Page 1 of 1
CVE-2021-36002HIGHCVSS 7.3≤ 11.5.5≥ unspecified, ≤ 11.5.52021-09-01
CVE-2021-36002 [MEDIUM] CWE-379 CVE-2021-36002: Adobe Captivate version 11.5.5 (and earlier) is affected by an Creation of Temporary File In Directo Adobe Captivate version 11.5.5 (and earlier) is affected by an Creation of Temporary File In Directory With Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. The attacker must plant a malicious file in a particular location of the victim's machine. Exploitation of this issue requires us
cvelistv5nvd
CVE-2021-21011HIGHCVSS 7.0≤ 11.5.1.499v11.5.1.499 and earlier2021-01-13
CVE-2021-21011 [HIGH] CWE-427 CVE-2021-21011: Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path ele Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with permissions to write to the file system could leverage this vulnerability to escalate privileges.
cvelistv5nvd
CVE-2017-3098CRITICALCVSS 9.8≤ 9.02017-06-20
CVE-2017-3098 [CRITICAL] CWE-20 CVE-2017-3098: Adobe Captivate versions 9 and earlier have a remote code execution vulnerability in the quiz report Adobe Captivate versions 9 and earlier have a remote code execution vulnerability in the quiz reporting feature that could be abused to read and write arbitrary files to the server.
nvd
CVE-2017-3087HIGHCVSS 7.5≤ 9.02017-06-20
CVE-2017-3087 [HIGH] CWE-200 CVE-2017-3087: Adobe Captivate versions 9 and earlier have an information disclosure vulnerability resulting from a Adobe Captivate versions 9 and earlier have an information disclosure vulnerability resulting from abuse of the quiz reporting feature in Captivate.
nvd
CVE-2010-3191CRITICALCVSS 9.3v5.0.0.5962010-08-31
CVE-2010-3191 [CRITICAL] CVE-2010-3191: Untrusted search path vulnerability in Adobe Captivate 5.0.0.596, and possibly other versions, allow Untrusted search path vulnerability in Adobe Captivate 5.0.0.596, and possibly other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .cptx file. NOTE: the provenance of this information is unknown; the details are ob
nvd