CVE-2019-7093

HIGH

Creative Cloud Desktop App <4.7.0.400 - Privilege Escalation

Title source: llm

Description

Creative Cloud Desktop Application (installer) versions 4.7.0.400 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.

References (1)

[Vendor Advisory] https://helpx.adobe.com/security/products/creative-cloud/apsb19-11.html

Scores

CVSS v3 7.8

EPSS 0.0112

EPSS Percentile 78.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (1)

adobe/creative_cloud < 4.7.0.400

Timeline

Published May 24, 2019

Tracked Since Feb 18, 2026