Adobe Creative Cloud
Recent Adobe Creative Cloud Security Advisories
| Advisory | Title | Published |
|---|---|---|
| APSB23-21 | Security update available for Adobe Creative Cloud Desktop Application | APSB23-21 | March 14, 2023 |
| APSB22-11 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 APSB22-11 | February 8, 2022 |
| APSB21-111 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 APSB21-111 | November 9, 2021 |
| APSB21-76 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 APSB21-76 | September 14, 2021 |
| APSB21-41 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 APSB21-41 | June 8, 2021 |
| APSB21-31 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 APSB21-31 | May 12, 2021 |
| APSB21-18 | Security update available for Adobe Creative Cloud Desktop Application | APSB21-18 | March 26, 2021 |
| APSB20-33 | Security update available for Adobe Creative Cloud Desktop Application | APSB20-33 | July 14, 2020 |
| APSB20-11 | Security update available for Creative Cloud Desktop Application | APSB20-11 | March 24, 2020 |
| APSB20-68 | Security update available for Adobe Creative Cloud Desktop Application | APSB20-68 | January 1, 2020 |
By the Year
In 2023 there have been 1 vulnerability in Adobe Creative Cloud with an average score of 7.8 out of ten. Creative Cloud did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 1 | 7.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 7.80 |
| 2019 | 0 | 0.00 |
| 2018 | 4 | 8.80 |
It may take a day or so for new Creative Cloud vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Adobe Creative Cloud Security Vulnerabilities
Creative Cloud version 5.9.1 (and earlier) is affected by an Untrusted Search Path vulnerability
CVE-2023-26358
7.8 - High
- March 22, 2023
Creative Cloud version 5.9.1 (and earlier) is affected by an Untrusted Search Path vulnerability that might allow attackers to execute their own programs, access unauthorized data files, or modify configuration in unexpected ways. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. The problem extends to any type of critical resource that the application trusts.
Untrusted Path
Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability
CVE-2020-24422
7.8 - High
- October 21, 2020
Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
DLL preloading
Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability
CVE-2018-12829
9.8 - Critical
- August 29, 2018
Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability. Successful exploitation could lead to privilege escalation.
Improper Certificate Validation
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Unquoted Search Path vulnerability
CVE-2018-4873
7.8 - High
- May 19, 2018
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Unquoted Search Path vulnerability. Successful exploitation could lead to local privilege escalation.
Unquoted Search Path or Element
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validation vulnerability
CVE-2018-4991
9.8 - Critical
- May 19, 2018
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validation vulnerability. Successful exploitation could lead to a security bypass.
Improper Certificate Validation
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper input validation vulnerability
CVE-2018-4992
7.8 - High
- May 19, 2018
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper input validation vulnerability. Successful exploitation could lead to local privilege escalation.
Improper Input Validation
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Adobe Creative Cloud or by Adobe? Click the Watch button to subscribe.
