CVE-2021-28633

📊 6.1 MEDIUM⚡ 0.1%🎯 0 exploits

📅 Published Aug 24, 2021

📋 Status: Modified

Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the context of the current user. Exploitation of this issue requires physical interaction to the system.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

1 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	adobe	creative cloud desktop application	≤ 2.4	Vulnerable	cpe:2.3:a:adobe:creative_cloud_desktop_application::::::::

📱

adobe / creative cloud desktop application

Application

Vulnerable

Version: ≤ 2.4

CPE:

cpe:2.3:a:adobe:creative_cloud_desktop_application:*:*:*:*:*:*:*:*

Metrics

6.1 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Attack Vector:

PHYSICAL

Complexity:

LOW

Privileges:

HIGH

User Interaction:

REQUIRED

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Modified

CVSS Details

6.1 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.1% (Minimal)28.5th percentile

Last updated: Oct 31, 2025

Exploitation probability within 30 days

Published Date

Aug 24, 2021 (4 years ago)

Last Modified

Nov 21, 2024 (11 months ago)

Security Weaknesses2

CWE-379CWE-668

References2

NVDgeneral