Adobe has released a security update for the Creative Cloud Desktop Application installer for Windows. This update resolves an insecure library loading vulnerability in the installer that could lead to privilege escalation (CVE-2018-5003).
|Creative Cloud Desktop Application (installer)||
220.127.116.114 and earlier versions
To check the version of the Adobe Creative Cloud desktop app:
- Launch the Creative Cloud desktop app and sign in with your Adobe ID
- Click the gear icon and choose Preferences > General
Adobe categorizes this update with the following priority rating and recommends users update their installation to the newest version:
|Product||Updated version||Platform||Priority rating||Availability|
|Creative Cloud Desktop Application (installer)||18.104.22.1682||Windows||3||Download Center|
The latest Creative Cloud Desktop App installer can also be downloaded from the Download Center.
|Vulnerability Category||Vulnerability Impact||Severity||CVE Numbers|
|Insecure Library Loading (DLL hijacking)||Privilege Escalation||Important||CVE-2018-5003|