Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-11 | CVE-2021-21039 | Use After Free vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a Use After Free vulnerability. | 6.8 |
| 2021-02-11 | CVE-2021-21038 | Out-of-bounds Write vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Out-of-bounds Write vulnerability when parsing a crafted jpeg file. | 6.8 |
| 2021-02-11 | CVE-2021-21037 | Path Traversal vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a Path Traversal vulnerability. | 6.8 |
| 2021-02-11 | CVE-2021-21036 | Integer Overflow or Wraparound vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Integer Overflow vulnerability. | 6.8 |
| 2021-02-11 | CVE-2021-21034 | Out-of-bounds Read vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an Out-of-bounds Read vulnerability. | 4.3 |
| 2021-02-11 | CVE-2021-21017 | Out-of-bounds Write vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a heap-based buffer overflow vulnerability. | 6.8 |
| 2021-02-02 | CVE-2021-21043 | Cross-site Scripting vulnerability in Adobe Consulting Services Commons ACS Commons version 4.9.2 (and earlier) suffers from a Reflected Cross-site Scripting (XSS) vulnerability in version-compare and page-compare due to invalid JCR characters that are not handled correctly. | 4.3 |
| 2021-01-13 | CVE-2021-21013 | Incorrect Authorization vulnerability in Adobe Magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an insecure direct object vulnerability (IDOR) in the customer API module. | 5.5 |
| 2021-01-13 | CVE-2021-21011 | Uncontrolled Search Path Element vulnerability in Adobe Captivate Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. | 5.1 |
| 2021-01-13 | CVE-2021-21010 | Uncontrolled Search Path Element vulnerability in Adobe Incopy 15.1.3 InCopy version 15.1.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 5.1 |