Vulnerabilities > Adobe > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-10-14 CVE-2022-42342 Out-of-bounds Read vulnerability in Adobe products
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2022-09-30 CVE-2022-28851 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5.13.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
5.4
5.4
2022-09-26 CVE-2022-2926 Path Traversal vulnerability in Adobe Download Manager
The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory
network
low complexity
adobe CWE-22
4.9
4.9
2022-09-23 CVE-2022-38438 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5.13.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
5.4
5.4
2022-09-23 CVE-2022-38439 Cross-site Scripting vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5.13.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
5.4
5.4
2022-09-19 CVE-2022-35709 Use After Free vulnerability in Adobe Bridge
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-416
5.5
5.5
2022-09-19 CVE-2022-38425 Use After Free vulnerability in Adobe Bridge
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-416
5.5
5.5
2022-09-16 CVE-2022-28854 Out-of-bounds Read vulnerability in Adobe Indesign
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2022-09-16 CVE-2022-28855 Out-of-bounds Read vulnerability in Adobe Indesign
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2022-09-16 CVE-2022-28856 Out-of-bounds Read vulnerability in Adobe Indesign
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5