Vulnerabilities > Adobe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-21 | CVE-2020-24421 | NULL Pointer Dereference vulnerability in Adobe Indesign Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. | 4.3 |
| 2020-10-21 | CVE-2020-24424 | Uncontrolled Search Path Element vulnerability in Adobe Premiere PRO 14.1/14.2/14.4 Adobe Premiere Pro version 14.4 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. | 6.9 |
| 2020-10-21 | CVE-2020-24423 | Uncontrolled Search Path Element vulnerability in Adobe Media Encoder Adobe Media Encoder version 14.4 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 6.9 |
| 2020-10-21 | CVE-2020-24420 | Uncontrolled Search Path Element vulnerability in Adobe Photoshop Adobe Photoshop for Windows version 21.2.1 (and earlier) is affected by an uncontrolled search path element vulnerability that could result in arbitrary code execution in the context of the current user. | 6.9 |
| 2020-10-21 | CVE-2020-24419 | Uncontrolled Search Path Element vulnerability in Adobe After Effects Adobe After Effects version 17.1.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 6.9 |
| 2020-10-21 | CVE-2020-24422 | Uncontrolled Search Path Element vulnerability in Adobe Creative Cloud Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. | 6.8 |
| 2020-10-20 | CVE-2020-24416 | Cross-site Scripting vulnerability in Adobe Marketo Sales Insight Marketo Sales Insight plugin version 1.4355 (and earlier) is affected by a blind stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 6.1 |
| 2020-10-20 | CVE-2020-24415 | Out-of-bounds Write vulnerability in Adobe Illustrator Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. | 6.8 |
| 2020-10-20 | CVE-2020-24414 | Out-of-bounds Write vulnerability in Adobe Illustrator Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. | 6.8 |
| 2020-10-20 | CVE-2020-24413 | Out-of-bounds Write vulnerability in Adobe Illustrator Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. | 6.8 |