Insecure File Permissions in Adobe Download Manager
CVE-2019-8071

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Download Manager
Vendor: CVE Published:; 17 October 2019

Summary

A vulnerability in Adobe Download Manager versions 2.0.0.363 due to insecure file permissions can allow an attacker to escalate privileges. This could enable unauthorized access to sensitive information and system functions, potentially compromising the integrity and security of the affected system.

Affected Version(s)

Adobe Download Manager 2.0.0.363 versions

References

https://helpx.adobe.com/security/products/adm/apsb19-51.html

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 17, 2019
Vulnerability Reserved
Feb 12, 2019