Vulnerabilities > Adobe
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-12 | CVE-2019-7840 | Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 11.0/2016/2018 ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. | 9.8 |
| 2019-06-12 | CVE-2019-7839 | Command Injection vulnerability in Adobe Coldfusion 11.0/2016/2018 ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. | 9.8 |
| 2019-06-12 | CVE-2019-7838 | Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Coldfusion 11.0/2016/2018 ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. | 9.8 |
| 2019-05-29 | CVE-2019-7129 | Cross-site Scripting vulnerability in Adobe Experience Manager Forms 6.2/6.3/6.4 Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4 have a stored cross-site scripting vulnerability. | 6.1 |
| 2019-05-24 | CVE-2019-7095 | Out-of-bounds Write vulnerability in Adobe Digital Editions Adobe Digital Editions versions 4.5.10.185749 and below have a heap overflow vulnerability. | 9.8 |
| 2019-05-24 | CVE-2019-7094 | Out-of-bounds Write vulnerability in Adobe Photoshop CC Adobe Photoshop CC 19.1.7 and earlier, and 20.0.2 and earlier have a heap corruption vulnerability. | 9.8 |
| 2019-05-24 | CVE-2019-7093 | Uncontrolled Search Path Element vulnerability in Adobe Creative Cloud Creative Cloud Desktop Application (installer) versions 4.7.0.400 and earlier have an insecure library loading (dll hijacking) vulnerability. | 7.8 |
| 2019-05-24 | CVE-2019-7092 | Cross-site Scripting vulnerability in Adobe Coldfusion 11.0/2016/2018 ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a cross site scripting vulnerability. | 6.1 |
| 2019-05-24 | CVE-2019-7091 | Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 11.0/2016/2018 ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a deserialization of untrusted data vulnerability. | 9.8 |
| 2019-05-24 | CVE-2019-7090 | Out-of-bounds Read vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Flash Player Desktop Runtime versions 32.0.0.114 and earlier, Flash Player for Google Chrome versions 32.0.0.114 and earlier, and Flash Player for Microsoft Edge and Internet Explorer 11 versions 32.0.0.114 and earlier have an out-of-bounds read vulnerability. | 6.5 |