Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An authenticated attacker could exploit this to rewrite the file of the administrator, which may lead to elevated permissions. Exploitation of this issue requires user interaction.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/integrity_service/apsb20-42.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
08 Sep 2021, 17:23
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
26 Apr 2021, 19:38
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://helpx.adobe.com/security/products/integrity_service/apsb20-42.html - Vendor Advisory | |
CPE | cpe:2.3:a:adobe:genuine_service:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 4.4
v3 : 6.5 |
16 Apr 2021, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-16 18:15
Updated : 2023-12-10 13:55
NVD link : CVE-2020-9681
Mitre link : CVE-2020-9681
CVE.ORG link : CVE-2020-9681
JSON object : View
Products Affected
adobe
- genuine_service
apple
- macos
microsoft
- windows
CWE
CWE-427
Uncontrolled Search Path Element