Vulnerabilities > Adobe

DATE CVE VULNERABILITY TITLE RISK
2021-06-28 CVE-2021-28579 Improper Privilege Management vulnerability in Adobe Connect
Adobe Connect version 11.2.1 (and earlier) is affected by an Improper access control vulnerability that can lead to the elevation of privileges.
network
low complexity
adobe CWE-269
4.0
2021-06-28 CVE-2021-28588 Path Traversal vulnerability in Adobe Robohelp Server
Adobe RoboHelp Server version 2019.0.9 (and earlier) is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request.
network
low complexity
adobe CWE-22
critical
9.0
2021-06-28 CVE-2021-28597 Creation of Temporary File in Directory With Incorrect Permissions vulnerability in Adobe Photoshop Elements
Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability.
local
low complexity
adobe CWE-379
2.1
2021-06-28 CVE-2021-28623 Creation of Temporary File in Directory With Incorrect Permissions vulnerability in Adobe Premiere Elements 3.0.0/5.2
Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability.
local
low complexity
adobe CWE-379
2.1
2021-06-28 CVE-2021-21083 Improper Access Control vulnerability in Adobe Experience Manager
AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability.
network
low complexity
adobe CWE-284
5.0
2021-06-28 CVE-2021-21084 Cross-Site Scripting vulnerability in Adobe Experience Manager
AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields.
network
adobe CWE-79
4.3
2021-06-28 CVE-2021-21090 Path Traversal vulnerability in Adobe Incopy 15.1.3/16.0
Adobe InCopy version 16.0 (and earlier) is affected by an path traversal vulnerability when parsing a crafted file.
network
adobe CWE-22
critical
9.3
2021-06-28 CVE-2021-21098 Out-Of-Bounds Write vulnerability in Adobe Indesign
Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file.
network
adobe CWE-787
critical
9.3
2021-06-28 CVE-2021-21099 Out-Of-Bounds Write vulnerability in Adobe Indesign
Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file.
network
adobe CWE-787
critical
9.3
2021-06-28 CVE-2021-21101 Out-Of-Bounds Write vulnerability in Adobe Illustrator
Adobe Illustrator version 25.2 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file.
network
adobe CWE-787
critical
9.3