Adobe released vulnerability update for RoboHelp — prone to an elevation of privilege vulnerability.
Elevation of Privilege
Adobe RoboHelp is a Help Authoring Tool (HAT) that allows you to create help systems, e-learning content and knowledge bases.
On the hand, researchers discovered vulnerability in RoboHelp causing tool to an uncontrolled search path element flaw.
Follow Us on: Twitter, Instagram, Facebook to get the latest security news!
However, successful exploitation could lead to privilege escalation in the context of current user.
In addition, the vulnerability identified under CVE-2021-21070. Also, the vulnerability rated HIGH severity with base score:
Base Score : 8.4
Base Metrics : CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Product
Product | Version | Platform |
---|---|---|
RoboHelp | RH2020.0.3 and earlier versions | Windows |
Solution
Adobe recommends users update their installation to the newest version:
Product | Version | Platform |
RoboHelp | RH2020.0.4 | Windows and macOS |
Leave A Comment