Bulletin ID
Security hotfix available for Adobe Captivate | APSB21-60
|
Date Published |
Priority |
---|---|---|
APSB21-60 |
August 17, 2021 |
3 |
Summary
Adobe has released a security hotfix for Adobe Captivate. This hotfix addresses an important vulnerability. Successful exploitation could lead to privilege escalation in the context of the current user.
Affected versions
Product |
Version |
Platform |
---|---|---|
Adobe Captivate 2019 |
11.5.5 and earlier versions |
macOS |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
Product |
Version |
Platform |
Priority |
Availability |
---|---|---|---|---|
Adobe Captivate 2019 |
Hotfix |
macOS |
3 |
Vulnerability details
Vulnerability Category |
Vulnerability Impact |
Severity |
CVSS base score |
CVE Number |
|
---|---|---|---|---|---|
Creation of Temporary File in Directory with Incorrect Permissions (CWE-379) |
Privilege Escalation |
Important |
5.0 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N |
CVE-2021-36002 |
Acknowledgments
Adobe would like to thank CQY of Topsec Alpha Team (yjdfy) for reporting these issues and for working with Adobe to help protect our customers.
Revisions
September 1, 2021: Updated the title of the document to correctly reflect the type of update available for the users.
For more information, visit https://helpx.adobe.com/security.html, or email PSIRT@adobe.com.