CVE-2020-24422
Description
Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
12.468
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-24422 are fixed in Creative Cloud Desktop?Application 5.3 | Windows |
| Vulnerabilities CVE-2020-24422 are fixed in Creative Cloud Desktop?Application?? 2.2 | Windows |
| Vulnerabilities CVE-2020-24422 are affected in Adobe Creative Cloud (x64) 2.1 | Windows |
| Vulnerabilities CVE-2020-24422 are affected in Adobe Creative Cloud (x64) 5.2 | Windows |
| Vulnerabilities CVE-2020-24422 are affected in Adobe Creative Cloud 2.1 | Windows |
| Vulnerabilities CVE-2020-24422 are affected in Adobe Creative Cloud 5.2 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234