Uncontrolled Search Path Element Vulnerability in Adobe Genuine Service v6.6 and Earlier

Uncontrolled Search Path Element Vulnerability in Adobe Genuine Service v6.6 and Earlier

CVE-2020-9681 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An authenticated attacker could exploit this to rewrite the file of the administrator, which may lead to elevated permissions. Exploitation of this issue requires user interaction.

Learn more about our User Device Pen Test.