Vulnerabilities > Adobe > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-22266 Open Redirect vulnerability in Adobe Experience Manager
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability.
network
low complexity
adobe CWE-601
5.4
5.4
2023-03-22 CVE-2023-22269 Cross-site Scripting vulnerability in Adobe Experience Manager
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
5.4
5.4
2023-03-22 CVE-2023-22271 Inadequate Encryption Strength vulnerability in Adobe Experience Manager
Experience Manager versions 6.5.15.0 (and earlier) are affected by a Weak Cryptography for Passwords vulnerability that can lead to a security feature bypass.
network
high complexity
adobe CWE-326
5.3
5.3
2023-03-22 CVE-2023-25862 Out-of-bounds Read vulnerability in Adobe Illustrator
Illustrator version 26.5.2 (and earlier) and 27.2.0 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2023-02-17 CVE-2023-21577 Out-of-bounds Read vulnerability in Adobe Photoshop 23.0.0/23.1/23.3.2
Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2023-02-17 CVE-2023-21578 Out-of-bounds Read vulnerability in Adobe Photoshop 23.0.0/23.1/23.3.2
Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2023-02-17 CVE-2023-21583 Out-of-bounds Read vulnerability in Adobe Bridge 12.0.1
Adobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2023-02-17 CVE-2023-21584 Use After Free vulnerability in Adobe Framemaker
FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-416
5.5
5.5
2023-02-17 CVE-2023-21593 NULL Pointer Dereference vulnerability in Adobe Indesign 17.2.1/18.0/18.1
Adobe InDesign versions ID18.1 (and earlier) and ID17.4 (and earlier) are affected by a NULL Pointer Dereference vulnerability.
local
low complexity
adobe CWE-476
5.5
5.5
2023-02-17 CVE-2023-21620 Out-of-bounds Read vulnerability in Adobe Framemaker
FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5