CVE-2021-40776

Name of the Vulnerable Software and Affected Versions Adobe Lightroom Classic versions 10.3 and earlier

Description The issue is related to a privilege escalation vulnerability in the Offline Lightroom Classic installer. An authenticated attacker could leverage this vulnerability to escalate privileges, with user interaction required before product installation to abuse this vulnerability. The vulnerability is also associated with the creation of temporary files with insecure permissions, which could allow a remote attacker to elevate their privileges.

Recommendations For Adobe Lightroom Classic versions 10.3 and earlier, update to a version that contains a fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.