Adobe Gocart vulnerabilities
6 known vulnerabilities affecting adobe/gocart.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2021-43017MEDIUMCVSS 4.2≥ unspecified, ≤ 5.52021-11-18
CVE-2021-43017 [MEDIUM] CWE-379 CVE-2021-43017: Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vuln
Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. An authenticated attacker with root privileges could leverage this vulnerability to achieve denial of service by planting a malicious file on the victim's local machine. User interaction is required b
cvelistv5nvd
CVE-2021-40708HIGHCVSS 7.3≥ unspecified, ≤ 7.32021-09-29
CVE-2021-40708 [HIGH] CWE-379 CVE-2021-40708: Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerabilit
Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An authenticated attacker could leverage this vulnerability to achieve read / write privileges to execute arbitrary code. User interaction is required to abuse this vulnerability.
cvelistv5nvd
CVE-2021-28568MEDIUMCVSS 6.5≥ unspecified, ≤ 7.12021-09-08
CVE-2021-28568 [MEDIUM] CWE-379 CVE-2021-28568: Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerab
Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability to achieve privilege escalation in the context of the current user.
cvelistv5nvd
CVE-2020-9668HIGHCVSS 7.8≥ unspecified, ≤ 6.62021-04-16
CVE-2020-9668 [HIGH] CWE-284 CVE-2020-9668: Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control vulnerabil
Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control vulnerability when handling symbolic links. An unauthenticated attacker could exploit this to elevate privileges in the context of the current user.
cvelistv5nvd
CVE-2020-9681MEDIUMCVSS 6.5≥ unspecified, ≤ 6.62021-04-16
CVE-2020-9681 [MEDIUM] CWE-427 CVE-2020-9681: Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element v
Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An authenticated attacker could exploit this to rewrite the file of the administrator, which may lead to elevated permissions. Exploitation of this issue requires user interaction.
cvelistv5nvd
CVE-2020-9667MEDIUMCVSS 6.5≥ unspecified, ≤ 6.62021-04-16
CVE-2020-9667 [MEDIUM] CWE-427 CVE-2020-9667: Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element v
Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An authenticated attacker with admin privileges could plant custom binaries and execute them with System permissions. Exploitation of this issue requires user interaction.
cvelistv5nvd