====================================================================

                             CERT-Renater

                 Note d'Information No. 2021/VULN217
_____________________________________________________________________

DATE                : 14/04/2021

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Adobe RoboHelp versions prior to
                                         RH2020.0.4.

=====================================================================
https://helpx.adobe.com/security/products/robohelp/apsb21-20.html
_____________________________________________________________________

Security update available for RoboHelp | APSB21-20
Bulletin ID 	Date Published 	Priority
APSB21-20 	April 13, 2021 	3


Summary

Adobe has released a security update for RoboHelp. This update resolves
a vulnerability rated important. Successful exploitaton could lead to
privilege escalation in the context of current user.


Affected product versions

Product 	Version 	Platform
RoboHelp 	RH2020.0.3 and earlier versions 	Windows


Solution

Adobe categorizes these updates with the following priority ratings and
recommends users update their installation to the newest version:

Product 	Version        Platform         Priority    Availability
RoboHelp 	RH2020.0.4   Windows and macOS 	3           Download


Vulnerability details

Vulnerability Category 	Vulnerability Impact 	Severity    CVE Numbers
Uncontrolled search path element    Privilege Escalation   Important
CVE-2021-21070


Acknowledgments

Adobe would like to thank Xavier DANEST from Decathlon for reporting
both issues and for working with Adobe to help protect our customers.



=========================================================
+ CERT-RENATER       |    tel : 01-53-94-20-44          +
+ 23/25 Rue Daviel   |    fax : 01-53-94-20-41          +
+ 75013 Paris        |    email:cert@support.renater.fr +
=========================================================