Unrated severityNVD Advisory· Published Nov 23, 2021· Updated Apr 23, 2025

Adobe Creative Cloud Incorrect Permission Assignment Privilege Escalation Vulnerability

CVE-2021-43019

Description

Adobe Creative Cloud version 5.5 (and earlier) are affected by a privilege escalation vulnerability in the resources leveraged by the Setup.exe service. An unauthenticated attacker could leverage this vulnerability to remove files and escalate privileges under the context of SYSTEM . An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability on the product installer. User interaction is required before product installation to abuse this vulnerability.

Affected products

Adobe Inc./Creative Cloudllm-fuzzy
Range: <=5.5
Adobe Inc./Creative Cloud Desktopcpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

helpx.adobe.com/security/products/creative-cloud/apsb21-111.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000