Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-12 | CVE-2021-21078 | Unspecified vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted Service Path vulnerability in CCXProcess that could allow an attacker to achieve arbitrary code execution in the process of the current user. | 6.5 |
| 2021-03-12 | CVE-2021-21068 | Unspecified vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an attacker to cause arbitrary file overwriting. low complexity adobe | 6.1 |
| 2021-02-23 | CVE-2020-29075 | Information Exposure vulnerability in Adobe products Acrobat Reader DC versions 2020.013.20066 (and earlier), 2020.001.30010 (and earlier) and 2017.011.30180 (and earlier) are affected by an information exposure vulnerability, that could enable an attacker to get a DNS interaction and track if the user has opened or closed a PDF file when loaded from the filesystem without a prompt. | 6.5 |
| 2021-02-11 | CVE-2021-21042 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Out-of-bounds Read vulnerability that could lead to arbitrary disclosure of information in the memory stack. | 6.5 |
| 2021-02-11 | CVE-2021-21034 | Out-of-bounds Read vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Out-of-bounds Read vulnerability. | 4.3 |
| 2021-02-02 | CVE-2021-21043 | Unspecified vulnerability in Adobe Consulting Services Commons ACS Commons version 4.9.2 (and earlier) suffers from a Reflected Cross-site Scripting (XSS) vulnerability in version-compare and page-compare due to invalid JCR characters that are not handled correctly. | 6.1 |
| 2020-11-12 | CVE-2020-24443 | Unspecified vulnerability in Adobe Connect Adobe Connect version 11.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2020-11-12 | CVE-2020-24442 | Unspecified vulnerability in Adobe Connect Adobe Connect version 11.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2020-11-12 | CVE-2020-24441 | Unspecified vulnerability in Adobe Acrobat Reader 20.6.0/20.6.2 Adobe Acrobat Reader for Android version 20.6.2 (and earlier) does not properly restrict access to directories created by the application. | 5.5 |
| 2020-11-05 | CVE-2020-24431 | Unspecified vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process. | 4.4 |