Vulnerabilities > Adobe
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-15 | CVE-2016-7869 | Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. | 8.8 |
| 2016-12-15 | CVE-2016-7868 | Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. | 8.8 |
| 2016-12-15 | CVE-2016-7867 | Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. | 8.8 |
| 2016-12-15 | CVE-2016-7866 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Animate 15.2.1.95 Adobe Animate versions 15.2.1.95 and earlier have an exploitable memory corruption vulnerability. | 9.8 |
| 2016-12-15 | CVE-2016-7856 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe DNG Converter 9.7 Adobe DNG Converter versions 9.7 and earlier have an exploitable memory corruption vulnerability. | 9.8 |
| 2016-12-15 | CVE-2016-6934 | Cross-site Scripting vulnerability in Adobe Experience Manager Forms and Livecycle Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the PMAdmin module that could be used in cross-site scripting attacks. | 6.1 |
| 2016-12-15 | CVE-2016-6933 | Cross-site Scripting vulnerability in Adobe Experience Manager and Livecycle Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks. | 6.1 |
| 2016-11-10 | CVE-2016-4095 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | 9.8 |
| 2016-11-08 | CVE-2016-7865 | Incorrect Type Conversion or Cast vulnerability in multiple products Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. | 8.8 |
| 2016-11-08 | CVE-2016-7864 | Use After Free vulnerability in multiple products Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. | 8.8 |