Vulnerabilities > Adobe > Low

DATE CVE VULNERABILITY TITLE RISK
2022-01-13 CVE-2021-43761 Cross-site Scripting vulnerability in Adobe Experience Manager
AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields.
network
adobe CWE-79
3.5
2022-01-13 CVE-2021-43764 Cross-site Scripting vulnerability in Adobe Experience Manager
AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields.
network
adobe CWE-79
3.5
2021-11-18 CVE-2021-43017 Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Creative Cloud Desktop Application
Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer.
network
adobe CWE-379
3.5
2021-09-27 CVE-2021-28613 Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Creative Cloud Desktop Application
Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file.
local
adobe CWE-379
3.3
2021-09-27 CVE-2021-40711 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a stored XSS vulnerability when creating Content Fragments.
network
adobe CWE-79
3.5
2021-09-01 CVE-2021-36057 Write-what-where Condition vulnerability in Adobe XMP Toolkit Software Development KIT 2020.1
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a write-what-where condition vulnerability caused during the application's memory allocation process.
local
low complexity
adobe CWE-123
2.1
2021-08-24 CVE-2021-28633 Unspecified vulnerability in Adobe Creative Cloud Desktop Application 2.4
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability.
local
low complexity
adobe
3.6
2021-06-28 CVE-2021-28597 Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Photoshop Elements
Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability.
local
low complexity
adobe CWE-379
2.1
2021-06-28 CVE-2021-28623 Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Premiere Elements 3.0.0/5.2
Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability.
local
low complexity
adobe CWE-379
2.1
2021-04-15 CVE-2021-21096 Improper Authorization vulnerability in Adobe Bridge
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service.
local
low complexity
adobe CWE-285
2.1