Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-28 | CVE-2021-28576 | Out-of-bounds Read vulnerability in Adobe Animate Adobe Animate version 21.0.5 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. | 4.3 |
| 2021-04-19 | CVE-2021-21070 | Uncontrolled Search Path Element vulnerability in Adobe Robohelp Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. | 6.5 |
| 2021-04-16 | CVE-2020-9681 | Uncontrolled Search Path Element vulnerability in Adobe Genuine Service Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. | 6.5 |
| 2021-04-16 | CVE-2020-9667 | Uncontrolled Search Path Element vulnerability in Adobe Genuine Service Adobe Genuine Service version 6.6 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. | 6.5 |
| 2021-04-15 | CVE-2021-21096 | Unspecified vulnerability in Adobe Bridge Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. | 5.5 |
| 2021-04-15 | CVE-2021-21087 | Cross-site Scripting vulnerability in Adobe Coldfusion 2016/2018/2021.0.0.323925 Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. | 5.4 |
| 2021-04-01 | CVE-2021-28546 | Missing Support for Integrity Check vulnerability in Adobe products Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are missing support for an integrity check. | 6.5 |
| 2021-03-12 | CVE-2021-21080 | Cross-site Scripting vulnerability in Adobe Connect Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2021-03-12 | CVE-2021-21079 | Cross-site Scripting vulnerability in Adobe Connect Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2021-03-12 | CVE-2021-21078 | Untrusted Search Path vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted Service Path vulnerability in CCXProcess that could allow an attacker to achieve arbitrary code execution in the process of the current user. | 6.5 |