Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-29 | CVE-2021-39853 | NULL Pointer Dereference vulnerability in Adobe products Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. | 5.5 |
| 2021-09-29 | CVE-2021-39855 | Information Exposure vulnerability in Adobe products Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. | 6.5 |
| 2021-09-29 | CVE-2021-39856 | Information Exposure vulnerability in Adobe products Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. | 6.5 |
| 2021-09-29 | CVE-2021-39860 | NULL Pointer Dereference vulnerability in Adobe products Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. | 5.5 |
| 2021-09-29 | CVE-2021-39861 | Out-of-bounds Read vulnerability in Adobe products Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the current user. | 5.5 |
| 2021-09-27 | CVE-2021-39827 | Unspecified vulnerability in Adobe Digital Editions Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. | 6.5 |
| 2021-09-27 | CVE-2021-39828 | Unspecified vulnerability in Adobe Digital Editions Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. | 6.5 |
| 2021-09-27 | CVE-2021-40711 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a stored XSS vulnerability when creating Content Fragments. | 5.4 |
| 2021-09-27 | CVE-2021-40712 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a improper input validation vulnerability via the path parameter. | 6.5 |
| 2021-09-27 | CVE-2021-40713 | Improper Certificate Validation vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a improper certificate validation vulnerability in the cold storage component. | 5.9 |