Vulnerabilities > Adobe

DATE CVE VULNERABILITY TITLE RISK
2020-01-29 CVE-2020-3711 Out-of-bounds Write vulnerability in Adobe Illustrator CC
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability.
local
low complexity
adobe CWE-787
7.8
7.8
2020-01-29 CVE-2020-3710 Out-of-bounds Write vulnerability in Adobe Illustrator CC
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability.
local
low complexity
adobe CWE-787
7.8
7.8
2020-01-28 CVE-2019-8257 Use After Free vulnerability in Adobe Acrobat DC
Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability.
network
low complexity
adobe CWE-416
critical
 9.8
9.8
2020-01-28 CVE-2019-7131 Type Confusion vulnerability in Adobe Acrobat DC
Adobe Acrobat and Reader versions 2019.010.20064 and earlier, 2019.010.20064 and earlier, 2017.011.30110 and earlier version, and 2015.006.30461 and earlier have a type confusion vulnerability.
network
low complexity
adobe CWE-843
critical
 9.8
9.8
2020-01-15 CVE-2019-16469 Expression Language Injection vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an expression language injection vulnerability.
network
low complexity
adobe CWE-917
7.5
7.5
2020-01-15 CVE-2019-16468 Injection vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability.
network
low complexity
adobe CWE-74
7.5
7.5
2020-01-15 CVE-2019-16467 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability.
network
low complexity
adobe CWE-79
6.1
6.1
2020-01-15 CVE-2019-16466 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability.
network
low complexity
adobe CWE-79
6.1
6.1
2019-12-19 CVE-2019-8256 Incorrect Permission Assignment for Critical Resource vulnerability in Adobe Coldfusion 2018
ColdFusion versions Update 6 and earlier have an insecure inherited permissions of default installation directory vulnerability.
network
low complexity
adobe CWE-732
critical
 9.8
9.8
2019-12-19 CVE-2019-8255 Command Injection vulnerability in Adobe Brackets 1.14/1.6
Brackets versions 1.14 and earlier have a command injection vulnerability.
network
low complexity
adobe CWE-77
critical
 9.8
9.8