Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-27 | CVE-2021-39818 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Incopy Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2021-09-27 | CVE-2021-39819 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Incopy Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious XML file, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2021-09-27 | CVE-2021-39823 | Heap-based Buffer Overflow vulnerability in Adobe Svg-Native-Viewer Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2021-09-27 | CVE-2021-39825 | Out-of-bounds Write vulnerability in Adobe Photoshop Elements Photoshop Elements versions 2021 build 19.0 (20210304.m.156367) (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 6.8 |
| 2021-09-27 | CVE-2021-39827 | Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Digital Editions Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. | 6.8 |
| 2021-09-27 | CVE-2021-39828 | Creation of Temporary File in Directory with Incorrect Permissions vulnerability in Adobe Digital Editions Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. | 6.8 |
| 2021-09-27 | CVE-2021-40712 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a improper input validation vulnerability via the path parameter. | 4.0 |
| 2021-09-27 | CVE-2021-40713 | Improper Certificate Validation vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a improper certificate validation vulnerability in the cold storage component. | 4.3 |
| 2021-09-27 | CVE-2021-40714 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability via the accesskey parameter. | 4.3 |
| 2021-09-08 | CVE-2021-28568 | Exposure of Resource to Wrong Sphere vulnerability in Adobe Genuine Service 7.1 Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. | 6.9 |