Vulnerability Details CVE-2016-6935
Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8.0.310 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2016-6935
-
cpe:2.3:a:adobe:creative_cloud:-
-
cpe:2.3:a:adobe:creative_cloud:1.0.0.183
-
cpe:2.3:a:adobe:creative_cloud:1.0.2.189
-
cpe:2.3:a:adobe:creative_cloud:1.1.0.213
-
cpe:2.3:a:adobe:creative_cloud:1.1.1.220
-
cpe:2.3:a:adobe:creative_cloud:1.1.2.232
-
cpe:2.3:a:adobe:creative_cloud:1.2.0.248
-
cpe:2.3:a:adobe:creative_cloud:1.2.1.260
-
cpe:2.3:a:adobe:creative_cloud:1.3.0.322
-
cpe:2.3:a:adobe:creative_cloud:1.4.0.348
-
cpe:2.3:a:adobe:creative_cloud:1.4.1.351
-
cpe:2.3:a:adobe:creative_cloud:1.5.0.367
-
cpe:2.3:a:adobe:creative_cloud:1.5.1.369
-
cpe:2.3:a:adobe:creative_cloud:1.6.0.393
-
cpe:2.3:a:adobe:creative_cloud:1.7.0.413
-
cpe:2.3:a:adobe:creative_cloud:1.7.1.418
-
cpe:2.3:a:adobe:creative_cloud:1.8.0.447
-
cpe:2.3:a:adobe:creative_cloud:1.9.0.465
-
cpe:2.3:a:adobe:creative_cloud:1.9.1.474
-
cpe:2.3:a:adobe:creative_cloud:2.0.0.74
-
cpe:2.3:a:adobe:creative_cloud:2.0.1.88
-
cpe:2.3:a:adobe:creative_cloud:2.1
-
cpe:2.3:a:adobe:creative_cloud:2.1.1.110
-
cpe:2.3:a:adobe:creative_cloud:2.1.3.121
-
cpe:2.3:a:adobe:creative_cloud:2.2.0.129
-
cpe:2.3:a:adobe:creative_cloud:2.3.0.151
-
cpe:2.3:a:adobe:creative_cloud:3.4.1.181
-
cpe:2.3:a:adobe:creative_cloud:3.4.2.187
-
cpe:2.3:a:adobe:creative_cloud:3.4.3.189
-
cpe:2.3:a:adobe:creative_cloud:3.5.0.206
-
cpe:2.3:a:adobe:creative_cloud:3.5.1.209
-
cpe:2.3:a:adobe:creative_cloud:3.6.0.244
-
cpe:2.3:a:adobe:creative_cloud:3.6.0.248
-
cpe:2.3:a:adobe:creative_cloud:3.7.0.272