Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-28 | CVE-2021-21084 | Unspecified vulnerability in Adobe Experience Manager AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2021-06-28 | CVE-2021-28573 | Out-of-bounds Read vulnerability in Adobe Animate Adobe Animate version 21.0.5 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. | 6.5 |
| 2021-04-19 | CVE-2021-21070 | Unspecified vulnerability in Adobe Robohelp Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. | 6.5 |
| 2021-04-16 | CVE-2020-9681 | Unspecified vulnerability in Adobe Genuine Service Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. | 6.5 |
| 2021-04-16 | CVE-2020-9667 | Unspecified vulnerability in Adobe Genuine Service Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. | 6.5 |
| 2021-04-15 | CVE-2021-21096 | Unspecified vulnerability in Adobe Bridge Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. | 5.5 |
| 2021-04-15 | CVE-2021-21087 | Unspecified vulnerability in Adobe Coldfusion 2016/2018/2021.0.0.323925 Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. | 5.4 |
| 2021-04-01 | CVE-2021-28546 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are missing support for an integrity check. | 6.5 |
| 2021-03-12 | CVE-2021-21080 | Unspecified vulnerability in Adobe Connect Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2021-03-12 | CVE-2021-21079 | Unspecified vulnerability in Adobe Connect Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |