Adobe Security Bulletin

Security hotfix available for Adobe Captivate | APSB21-60

Bulletin ID

Date Published

Priority

APSB21-60

August 17, 2021

3

Summary

Adobe has released a security hotfix for Adobe Captivate.  This hotfix addresses an important vulnerability.  Successful exploitation could lead to privilege escalation in the context of the current user.             

Affected versions

Product

Version

Platform

Adobe Captivate 2019

11.5.5 and earlier versions  

macOS

Solution

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:

Product

Version

Platform

Priority

Availability

Adobe Captivate 2019   

Hotfix

macOS 

3

Vulnerability details

Vulnerability Category

Vulnerability Impact

Severity

CVSS base score 

CVE Number

Creation of Temporary File in Directory with Incorrect Permissions

(CWE-379)

Privilege Escalation 

Important

5.0

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

CVE-2021-36002

Acknowledgments

Adobe would like to thank CQY of Topsec Alpha Team (yjdfy) for reporting these issues and for working with Adobe to help protect our customers.      

Revisions

September 1, 2021: Updated the title of the document to correctly reflect the type of update available for the users.


For more information, visit https://helpx.adobe.com/security.html, or email PSIRT@adobe.com.

 Adobe

Saņemiet palīdzību ātrāk un vienkāršāk

Jauns lietotājs?