CVE-2021-40708

High

Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An…

adobe·CWE-379·Published 2021-09-29

CVSS

7.3

EPSS

0.02

KEV

Exploits

cve.orgen

310 chars

Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An authenticated attacker could leverage this vulnerability to achieve read / write privileges to execute arbitrary code. User interaction is required to abuse this vulnerability.

NVDen

310 chars

NVDes

368 chars

Adobe Genuine Service versiones 7.3 (y anteriores), están afectadas por una vulnerabilidad de escalada de privilegios en el instalador de AGSService. Un atacante autenticado podría aprovechar esta vulnerabilidad para conseguir privilegios de lectura/escritura para ejecutar código arbitrario. Es requerida una interacción del usuario para abusar de esta vulnerabilidad

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.0	6.8	6.4	AV:N/AC:M/Au:S/C:P/I:P/A:P
3.1	Primary	cve.org	7.3	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H