Arbitrary file deletion in Adobe Creative Cloud Desktop Application

CERT-LatestNews ThreatsCybercrime Uncategorized VulnerabilitiesAdobe VulnerabilitiesAll VulnerabilitiesApplications

Security Advisory. This security advisory describes one medium risk vulnerability.

1) Time-of-check Time-of-use (TOCTOU) Race Condition. Severity: Medium. CVSSv3:

Description. The vulnerability allows a remote attacker to delete arbitrary file on the system. The vulnerability exists due to time-of-check Time-of-use (TOCTOU) race condition.