Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-01 | CVE-2021-36062 | Unspecified vulnerability in Adobe Connect Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2021-09-01 | CVE-2021-36063 | Cross-site Scripting vulnerability in Adobe Connect Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2021-09-01 | CVE-2021-36077 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Bridge Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SVG file, potentially resulting in local application denial of service in the context of the current user. | 5.5 |
| 2021-08-24 | CVE-2021-28618 | Unspecified vulnerability in Adobe Animate Adobe Animate version 21.0.6 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. | 5.5 |
| 2021-08-24 | CVE-2021-28633 | Exposure of Resource to Wrong Sphere vulnerability in Adobe Creative Cloud Desktop Application 2.4 Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. | 6.1 |
| 2021-08-24 | CVE-2021-28601 | Unspecified vulnerability in Adobe After Effects Adobe After Effects version 18.2 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. | 5.5 |
| 2021-08-24 | CVE-2021-28625 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by a Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2021-08-24 | CVE-2021-28628 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by a Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2021-08-20 | CVE-2021-28593 | Unspecified vulnerability in Adobe Illustrator Adobe Illustrator version 25.2.3 (and earlier) is affected by a Use After Free vulnerability when parsing a specially crafted file. | 5.5 |
| 2021-08-20 | CVE-2021-35984 | Unspecified vulnerability in Adobe Acrobat DC and Acrobat Reader DC Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Null pointer dereference vulnerability. | 6.5 |