High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-01	CVE-2021-36042	Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Commerce and Magento Open Source Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability in the API File Option Upload Extension. network low complexity adobe CWE-434	7.2
2021-09-01	CVE-2021-36046	Out-of-bounds Write vulnerability in multiple products XMP Toolkit version 2020.1 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe debian CWE-787	7.8
2021-09-01	CVE-2021-36047	XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Improper Input Validation vulnerability potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe debian	7.8
2021-09-01	CVE-2021-36048	XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Improper Input Validation vulnerability potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe debian	7.8
2021-09-01	CVE-2021-36050	Out-of-bounds Write vulnerability in multiple products XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe debian CWE-787	7.8
2021-09-01	CVE-2021-36055	XMP Toolkit SDK versions 2020.1 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. local low complexity adobe debian	7.8
2021-09-01	CVE-2021-36064	XMP Toolkit version 2020.1 (and earlier) is affected by a Buffer Underflow vulnerability which could result in arbitrary code execution in the context of the current user. local low complexity adobe debian	7.8
2021-09-01	CVE-2021-36068	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Bridge Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious Bridge file, potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe CWE-119	7.8
2021-09-01	CVE-2021-39847	XMP Toolkit SDK version 2020.1 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. local low complexity adobe debian	7.8
2021-08-24	CVE-2021-28594	Uncontrolled Search Path Element vulnerability in Adobe Creative Cloud Desktop Application 2.4 Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Uncontrolled Search Path Element vulnerability. local low complexity adobe CWE-427	7.8