CNNVD-202510-2110 Information

Oct 15, 2025 cve

CNNVD ID

CNNVD-202510-2110

CVE-2025-54271

  • CNNVD Published: 2025-10-15

Description (Chinese)

Adobe Creative Cloud Desktop是美国奥多比(Adobe)公司的一套用于在Creative云会员管理中心管理应用程序和服务的应用程序。该程序支持同步和共享文件、管理字体以及访问商业摄影和设计的资产库。 Adobe Creative Cloud Desktop 6.7.0.278及之前版本存在安全漏洞,该漏洞源于TOCTOU竞争条件,可能导致任意文件系统写入。

Description (English)

Adobe Creative Cloud Desktop is an application for the management of applications and services at the Creative Cloud Member Management Centre of Adobe, United States. The program supports the synchronization and sharing of documents, the management of fonts and access to commercial photographic and designed asset banks. There is a security loophole in Adobe Creative Cloud Desktop 6.7.0.278 and earlier versions, which stems from the terms of the TOCTOU competition and may lead to the inclusion of arbitrary documentation systems.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

奥多比

Published

2025-10-15

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/creative-cloud/apsb25-95.html

Patch

https://helpx.adobe.com/security/products/creative-cloud/apsb25-95.html

Share on: