CVE-2025-64896 – Creative Cloud Desktop versions 6.4.0.361 and e... (How to Fix)

Q: What is the severity of CVE-2025-64896?

CVE-2025-64896 has a CVSS score of 5.5 (MEDIUM). Creative Cloud Desktop versions 6.4.0.361 and earlier contain a vulnerability where temporary files are created with incorrect permissions. An attacker could exploit this by tricking a user into opening a malicious file, causing application denial-of-service. This affects users running vulnerable versions of Adobe Creative Cloud Desktop.

📋 TL;DR

Creative Cloud Desktop versions 6.4.0.361 and earlier contain a vulnerability where temporary files are created with incorrect permissions. An attacker could exploit this by tricking a user into opening a malicious file, causing application denial-of-service. This affects users running vulnerable versions of Adobe Creative Cloud Desktop.

💻 Affected Systems

Products:

Adobe Creative Cloud Desktop

Versions: 6.4.0.361 and earlier

Operating Systems: Windows, macOS

Default Config Vulnerable: ⚠️ Yes

Notes: All default installations of affected versions are vulnerable.

📦 What is this software?

Creative Cloud by Adobe

View all CVEs affecting Creative Cloud →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete disruption of Creative Cloud Desktop functionality, preventing users from accessing Adobe applications and services.

🟠

Likely Case

Temporary application crashes or instability requiring restart of Creative Cloud Desktop.

🟢

If Mitigated

Minimal impact if users avoid opening untrusted files and maintain updated software.

🌐 Internet-Facing: LOW - Exploitation requires user interaction with malicious files, not direct network access.

🏢 Internal Only: MEDIUM - Internal users could be targeted via phishing or shared malicious files.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires user interaction (opening malicious file) and knowledge of temporary file manipulation techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 6.4.0.362 or later

Vendor Advisory: https://helpx.adobe.com/security/products/creative-cloud/apsb25-120.html

Restart Required: Yes

Instructions:

1. Open Creative Cloud Desktop app. 2. Click on your profile icon. 3. Select 'Check for updates'. 4. Install any available updates. 5. Restart Creative Cloud Desktop.

🔧 Temporary Workarounds

Restrict file execution

all

Configure system to prevent execution of untrusted files from temporary directories.

🧯 If You Can't Patch

Educate users to avoid opening untrusted files from unknown sources.
Implement application whitelisting to restrict which applications can create/modify temporary files.

🔍 How to Verify

Check if Vulnerable:

Open Creative Cloud Desktop, click profile icon, check version number. If version is 6.4.0.361 or earlier, system is vulnerable.

Check Version:

Creative Cloud Desktop: Click profile icon → 'About Creative Cloud'

Verify Fix Applied:

Confirm Creative Cloud Desktop version is 6.4.0.362 or later after applying update.

📡 Detection & Monitoring

Log Indicators:

Multiple Creative Cloud Desktop crash events
Unexpected temporary file creation/modification patterns

Network Indicators:

No specific network indicators for this local file manipulation vulnerability

SIEM Query:

EventID=1000 OR EventID=1001 AND Source='Creative Cloud Desktop' AND Description contains 'crash' OR 'exception'

📊 Metadata

CVE ID: CVE-2025-64896

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE: CWE-379

EPSS Score: 0.02% exploit probability (5.1th percentile)

Published: December 9, 2025

Last Updated: December 12, 2025

🔗 References

https://helpx.adobe.com/security/products/creative-cloud/apsb25-120.html Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-64896, you might also want to check these: