Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-13 | CVE-2021-43765 | Cross-site Scripting vulnerability in Adobe products AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2022-01-13 | CVE-2021-44176 | Cross-site Scripting vulnerability in Adobe products AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2022-01-13 | CVE-2021-44177 | Cross-site Scripting vulnerability in Adobe products AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2022-01-13 | CVE-2021-44178 | Cross-site Scripting vulnerability in Adobe products AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a reflected Cross-Site Scripting (XSS) vulnerability via the itemResourceType parameter. | 6.1 |
| 2022-01-13 | CVE-2021-45054 | Use After Free vulnerability in Adobe Incopy 15.1.3/16.0/16.4 Adobe InCopy version 16.4 (and earlier) is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. | 5.5 |
| 2021-12-20 | CVE-2021-43746 | Unspecified vulnerability in Adobe Premiere Rush 1.5.12/1.5.16/1.5.8 Adobe Premiere Rush versions 1.5.16 (and earlier) allows access to an uninitialized pointer vulnerability that allows remote attackers to disclose sensitive information on affected installations. | 5.5 |
| 2021-12-20 | CVE-2021-43750 | Unspecified vulnerability in Adobe Premiere Rush 1.5.12/1.5.16/1.5.8 Adobe Premiere Rush versions 1.5.16 (and earlier) are affected by a Null pointer dereference vulnerability. | 5.5 |
| 2021-11-22 | CVE-2021-40773 | Unspecified vulnerability in Adobe Prelude 10.1/9.0/9.0.1 Adobe Prelude version 10.1 (and earlier) is affected by a null pointer dereference vulnerability when parsing a specially crafted file. | 5.5 |
| 2021-11-19 | CVE-2021-36003 | Unspecified vulnerability in Adobe Audition 13.0.5/13.0.6 Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a specially crafted file. | 5.5 |
| 2021-11-18 | CVE-2021-43017 | Unspecified vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop installer. | 4.2 |