CVE-2021-28597

Name of the Vulnerable Software and Affected Versions Adobe Photoshop Elements versions 5.2 and earlier

Description The issue is related to the creation of temporary files with insecure permissions in Adobe Photoshop Elements. An unauthenticated attacker could exploit this to call functions against the installer, allowing them to perform high-privileged actions. Exploitation does not require user interaction.

Recommendations For Adobe Photoshop Elements versions 5.2 and earlier, update to a version that addresses the insecure temporary file creation vulnerability to prevent potential privilege escalation. As a temporary workaround, consider restricting access to the installer to minimize the risk of exploitation.