Uncontrolled Search Path Element Vulnerability in Adobe Creative Cloud Desktop
CVE-2026-48272

7.8HIGH

Key Information:

Vendor

Adobe

Vendor
CVE Published:
14 July 2026

What is CVE-2026-48272?

The Creative Cloud Desktop application from Adobe has been identified as having a vulnerability characterized by an Uncontrolled Search Path Element. This flaw may enable an attacker to execute arbitrary code within the context of the current user, without needing user interaction. Successful exploitation relies on circumstances which are not within the attacker's control, highlighting the potential risks associated with this vulnerability.

Affected Version(s)

Creative Cloud Desktop 0 <= 6.9.1.1

Creative Cloud Desktop 0 <= 6.9.1.1

Creative Cloud Desktop 6.10.0.252.3

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.