CVE-2021-43019 : Exploit Details and Defense Strategies
Adobe Creative Cloud version 5.5 and earlier are vulnerable to privilege escalation due to an incorrect permission assignment in Setup.exe service. Learn about the impact, exploitation, and mitigation of CVE-2021-43019.
Adobe Creative Cloud version 5.5 and earlier are affected by a privilege escalation vulnerability in the Setup.exe service resources, allowing attackers to escalate privileges under the context of SYSTEM.
Adobe Creative Cloud version 5.5 and earlier are susceptible to privilege escalation due to an incorrect permission assignment in the Setup.exe service.
Attackers can potentially remove files and elevate privileges to SYSTEM level.
Exploiting this vulnerability requires executing low-privileged code on the targeted system before product installation.
The Impact of CVE-2021-43019
Base Score: 7.8 (High Severity)
Attack Vector: Local
Attack Complexity: Low
Privileges Required: None
User Interaction: Required
The vulnerability can lead to unauthorized privilege escalation, compromising confidentiality, integrity, and availability.