Vulnerabilities > Adobe > High

DATE CVE VULNERABILITY TITLE RISK
2018-05-19 CVE-2018-4942 XXE vulnerability in Adobe Coldfusion 11.0/2016
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability.
network
low complexity
adobe CWE-611
7.5
7.5
2018-05-19 CVE-2018-4938 Uncontrolled Search Path Element vulnerability in Adobe Coldfusion 11.0/2016
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Insecure Library Loading vulnerability.
local
low complexity
adobe CWE-427
7.8
7.8
2018-05-19 CVE-2018-4937 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability.
network
low complexity
adobe CWE-787
8.8
8.8
2018-05-19 CVE-2018-4935 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability.
network
low complexity
adobe CWE-787
8.8
8.8
2018-05-19 CVE-2018-4932 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free vulnerability.
network
low complexity
adobe CWE-416
8.8
8.8
2018-05-19 CVE-2018-4928 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Indesign
Adobe InDesign versions 13.0 and below have an exploitable Memory corruption vulnerability.
local
low complexity
adobe CWE-119
7.8
7.8
2018-05-19 CVE-2018-4927 Untrusted Search Path vulnerability in Adobe Indesign
Adobe InDesign versions 13.0 and below have an exploitable Untrusted Search Path vulnerability.
local
low complexity
adobe CWE-426
7.8
7.8
2018-05-19 CVE-2018-4925 Out-of-bounds Read vulnerability in Adobe Digital Editions
Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read vulnerability.
network
low complexity
adobe CWE-125
7.5
7.5
2018-05-19 CVE-2018-4920 Type Confusion vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability.
network
low complexity
adobe CWE-843
8.8
8.8
2018-05-19 CVE-2018-4919 Use After Free vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable use after free vulnerability.
network
low complexity
adobe CWE-416
8.8
8.8