CVE-2021-21069 HIGH

CVE-2021-21069: Adobe Creative Cloud Privilege Escalation Vulnerability

Vendor Adobe

Product Creative Cloud (desktop component)

Weakness CWE-20 · Input validation

Published March 12, 2021

Last update April 23, 2025

View on NVD All CVEs

CVSS base score

7.8/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a local privilege escalation vulnerability that could allow an attacker to call functions against the installer to perform high privileged actions. Exploitation of this issue does not require user interaction.

Key dates

02Disclosure timeline

March 12, 2021 CVE published

April 23, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-21069 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

Identifiers

CVE CVE-2021-21069

CWE CWE-20

CVSS 7.8 / HIGH

Affected versions

Vendor Adobe

Product Creative Cloud (desktop component)

Affected ≥ unspecified and ≤ 5.3.1.470a

Vendor Adobe

Product Creative Cloud (desktop component)

Affected ≥ unspecified and ≤ None

CVE-2021-21069: Adobe Creative Cloud Privilege Escalation Vulnerability

01Description

02Disclosure timeline

03References

04Related CVE