Vulnerabilities > Adobe > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-12-01 CVE-2017-3105 Open Redirect vulnerability in Adobe Robohelp
Adobe RoboHelp has an Open Redirect vulnerability.
network
low complexity
adobe CWE-601
6.1
2017-12-01 CVE-2017-3104 Cross-site Scripting vulnerability in Adobe Robohelp
Adobe RoboHelp has a cross-site scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
6.1
2017-12-01 CVE-2017-11285 Cross-site Scripting vulnerability in Adobe Coldfusion 11.0/2016
Adobe ColdFusion has a cross-site scripting (XSS) vulnerability.
network
low complexity
adobe CWE-79
6.1
2017-08-11 CVE-2017-3122 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to Bezier curves.
network
low complexity
adobe CWE-119
6.5
2017-08-11 CVE-2017-3118 Information Exposure vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has a security bypass vulnerability related to execution of malicious attachments.
network
low complexity
adobe CWE-200
6.5
2017-08-11 CVE-2017-3115 Information Exposure vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an information disclosure vulnerability when handling links in a PDF document.
network
low complexity
adobe CWE-200
6.5
2017-08-11 CVE-2017-11265 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Adobe Graphics Manager module.
network
low complexity
adobe CWE-119
6.5
2017-08-11 CVE-2017-11258 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private data and the embedded GIF image.
network
low complexity
adobe CWE-119
6.5
2017-08-11 CVE-2017-11255 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing TIFF color map data.
network
low complexity
adobe CWE-119
6.5
2017-08-11 CVE-2017-11252 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe products
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the Adobe Graphics Manager (AGM) module.
network
low complexity
adobe CWE-119
6.5