Vulnerabilities > Adobe
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-05 | CVE-2020-24431 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process. | 4.4 |
| 2020-11-05 | CVE-2020-24430 | Use After Free vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a use-after-free vulnerability when handling malicious JavaScript. | 7.8 |
| 2020-11-05 | CVE-2020-24429 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a signature verification bypass that could result in local privilege escalation. | 7.8 |
| 2020-11-05 | CVE-2020-24428 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a time-of-check time-of-use (TOCTOU) race condition vulnerability that could result in local privilege escalation. | 7.7 |
| 2020-11-05 | CVE-2020-24427 | Unspecified vulnerability in Adobe products Acrobat Reader versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by an input validation vulnerability when decoding a crafted codec that could result in the disclosure of sensitive memory. | 3.3 |
| 2020-11-05 | CVE-2020-24426 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. | 3.3 |
| 2020-10-21 | CVE-2020-24421 | Unspecified vulnerability in Adobe Indesign Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. | 5.5 |
| 2020-10-21 | CVE-2020-24425 | Uncontrolled Search Path Element vulnerability in Adobe Dreamweaver Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. | 7.8 |
| 2020-10-21 | CVE-2020-24424 | Uncontrolled Search Path Element vulnerability in Adobe Premiere PRO 14.1/14.2/14.4 Adobe Premiere Pro version 14.4 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2020-10-21 | CVE-2020-24423 | Uncontrolled Search Path Element vulnerability in Adobe Media Encoder Adobe Media Encoder version 14.4 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |