Vulnerability Details CVE-2025-54271
Creative Cloud Desktop versions 6.7.0.278 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to arbitrary file system write. A low-privileged attacker could exploit the timing between the check and use of a resource, potentially allowing unauthorized modifications to files. Exploitation of this issue does not require user interaction.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.2%
CVSS Severity
CVSS v3 Score 5.6
Products affected by CVE-2025-54271
-
cpe:2.3:a:adobe:creative_cloud:-
-
cpe:2.3:a:adobe:creative_cloud:1.0.0.183
-
cpe:2.3:a:adobe:creative_cloud:1.0.2.189
-
cpe:2.3:a:adobe:creative_cloud:1.1.0.213
-
cpe:2.3:a:adobe:creative_cloud:1.1.1.220
-
cpe:2.3:a:adobe:creative_cloud:1.1.2.232
-
cpe:2.3:a:adobe:creative_cloud:1.2.0.248
-
cpe:2.3:a:adobe:creative_cloud:1.2.1.260
-
cpe:2.3:a:adobe:creative_cloud:1.3.0.322
-
cpe:2.3:a:adobe:creative_cloud:1.4.0.348
-
cpe:2.3:a:adobe:creative_cloud:1.4.1.351
-
cpe:2.3:a:adobe:creative_cloud:1.5.0.367
-
cpe:2.3:a:adobe:creative_cloud:1.5.1.369
-
cpe:2.3:a:adobe:creative_cloud:1.6.0.393
-
cpe:2.3:a:adobe:creative_cloud:1.7.0.413
-
cpe:2.3:a:adobe:creative_cloud:1.7.1.418
-
cpe:2.3:a:adobe:creative_cloud:1.8.0.447
-
cpe:2.3:a:adobe:creative_cloud:1.9.0.465
-
cpe:2.3:a:adobe:creative_cloud:1.9.1.474
-
cpe:2.3:a:adobe:creative_cloud:2.0.0.74
-
cpe:2.3:a:adobe:creative_cloud:2.0.1.88
-
cpe:2.3:a:adobe:creative_cloud:2.1
-
cpe:2.3:a:adobe:creative_cloud:2.1.1.110
-
cpe:2.3:a:adobe:creative_cloud:2.1.3.121
-
cpe:2.3:a:adobe:creative_cloud:2.2.0.129
-
cpe:2.3:a:adobe:creative_cloud:2.3.0.151
-
cpe:2.3:a:adobe:creative_cloud:3.4.1.181
-
cpe:2.3:a:adobe:creative_cloud:3.4.2.187
-
cpe:2.3:a:adobe:creative_cloud:3.4.3.189
-
cpe:2.3:a:adobe:creative_cloud:3.5.0.206
-
cpe:2.3:a:adobe:creative_cloud:3.5.1.209
-
cpe:2.3:a:adobe:creative_cloud:3.6.0.244
-
cpe:2.3:a:adobe:creative_cloud:3.6.0.248
-
cpe:2.3:a:adobe:creative_cloud:3.7.0.272
-
cpe:2.3:a:adobe:creative_cloud:3.7.5.291
-
cpe:2.3:a:adobe:creative_cloud:3.8.0.310
-
cpe:2.3:a:adobe:creative_cloud:3.9.0.334
-
cpe:2.3:a:adobe:creative_cloud:3.9.5.353
-
cpe:2.3:a:adobe:creative_cloud:4.0.1.188
-
cpe:2.3:a:adobe:creative_cloud:4.1.1.202
-
cpe:2.3:a:adobe:creative_cloud:4.2.0.211
-
cpe:2.3:a:adobe:creative_cloud:4.3.0.256
-
cpe:2.3:a:adobe:creative_cloud:4.4.0.294
-
cpe:2.3:a:adobe:creative_cloud:4.4.1.298
-
cpe:2.3:a:adobe:creative_cloud:4.5.0.331
-
cpe:2.3:a:adobe:creative_cloud:4.5.5.342
-
cpe:2.3:a:adobe:creative_cloud:4.6.0.384
-
cpe:2.3:a:adobe:creative_cloud:4.6.1
-
cpe:2.3:a:adobe:creative_cloud:4.6.1.393
-
cpe:2.3:a:adobe:creative_cloud:4.7.0.400
-
cpe:2.3:a:adobe:creative_cloud:4.8.0.421
-
cpe:2.3:a:adobe:creative_cloud:4.8.1.435
-
cpe:2.3:a:adobe:creative_cloud:4.8.2.476
-
cpe:2.3:a:adobe:creative_cloud:4.9
-
cpe:2.3:a:adobe:creative_cloud:4.9.0.504
-
cpe:2.3:a:adobe:creative_cloud:5.0
-
cpe:2.3:a:adobe:creative_cloud:5.0.0.354
-
cpe:2.3:a:adobe:creative_cloud:5.1
-
cpe:2.3:a:adobe:creative_cloud:5.10
-
cpe:2.3:a:adobe:creative_cloud:5.2
-
cpe:2.3:a:adobe:creative_cloud:5.3
-
cpe:2.3:a:adobe:creative_cloud:5.4.3
-
cpe:2.3:a:adobe:creative_cloud:5.9.1
-
cpe:2.3:a:adobe:creative_cloud:6.2.0.554
-
cpe:2.3:a:adobe:creative_cloud:6.3.0.207
-
cpe:2.3:a:adobe:creative_cloud:6.4.0.361
-
cpe:2.3:a:adobe:creative_cloud:6.5.0.348
-
cpe:2.3:a:adobe:creative_cloud:6.6.0.611
-
cpe:2.3:a:adobe:creative_cloud:6.7.0.278
-
cpe:2.3:o:apple:macos:-