Vulnerabilities > Adobe
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-17 | CVE-2023-44352 | Unspecified vulnerability in Adobe Coldfusion Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2023-11-17 | CVE-2023-44353 | Deserialization of Untrusted Data vulnerability in Adobe Coldfusion Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. | 9.8 |
| 2023-11-17 | CVE-2023-44355 | Improper Input Validation vulnerability in Adobe Coldfusion Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. | 4.3 |
| 2023-11-17 | CVE-2023-22272 | Improper Input Validation vulnerability in Adobe Robohelp Server Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Input Validation vulnerability that could lead to information disclosure by an unauthenticated attacker. | 7.5 |
| 2023-11-17 | CVE-2023-22273 | Path Traversal vulnerability in Adobe Robohelp Server Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to Remote Code Execution by an admin authenticated attacker. | 7.2 |
| 2023-11-17 | CVE-2023-22274 | XXE vulnerability in Adobe Robohelp Server Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could lead to information disclosure by an unauthenticated attacker. | 7.5 |
| 2023-11-17 | CVE-2023-22275 | SQL Injection vulnerability in Adobe Robohelp Server Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability that could lead to information disclosure by an unauthenticated attacker. | 7.5 |
| 2023-11-17 | CVE-2023-44324 | Improper Authentication vulnerability in Adobe Framemaker Publishing Server 2020/2022 Adobe FrameMaker Publishing Server versions 2022 and earlier are affected by an Improper Authentication vulnerability that could result in a Security feature bypass. | 9.8 |
| 2023-11-17 | CVE-2023-47066 | Out-of-bounds Read vulnerability in Adobe After Effects 24.0 Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. | 7.8 |
| 2023-11-17 | CVE-2023-47067 | Out-of-bounds Read vulnerability in Adobe After Effects 24.0 Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. | 7.8 |