Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-10 CVE-2024-53953 Use After Free vulnerability in Adobe Animate
Animate versions 23.0.8, 24.0.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-416
7.8
2024-12-10 CVE-2024-53954 Integer Underflow (Wrap or Wraparound) vulnerability in Adobe Animate
Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-191
7.8
2024-12-10 CVE-2024-54037 Unspecified vulnerability in Adobe Connect
Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by an attacker to execute arbitrary code in the context of the victim's browser session.
network
low complexity
adobe
8.1
2024-12-10 CVE-2024-49530 Unspecified vulnerability in Adobe products
Acrobat Reader versions 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe
7.8
2024-12-10 CVE-2024-49551 Out-of-bounds Write vulnerability in Adobe Media Encoder
Media Encoder versions 25.0, 24.6.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
2024-12-10 CVE-2024-49552 Out-of-bounds Write vulnerability in Adobe Media Encoder
Media Encoder versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
2024-12-10 CVE-2024-49553 Out-of-bounds Write vulnerability in Adobe Media Encoder
Media Encoder versions 25.0, 24.6.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
2024-12-10 CVE-2024-11633 Argument Injection or Modification vulnerability in Ivanti Connect Secure
Argument injection in Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution
network
low complexity
ivanti CWE-88
7.2
2024-12-10 CVE-2024-11634 Command Injection vulnerability in Ivanti Connect Secure 22.7/7.1/7.4
Command injection in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to achieve remote code execution.
network
low complexity
ivanti CWE-77
7.2
2024-12-10 CVE-2024-11772 Command Injection vulnerability in Ivanti Cloud Services Appliance 4.5/4.6/5.0
Command injection in the admin web console of Ivanti CSA before version 5.0.3 allows a remote authenticated attacker with admin privileges to achieve remote code execution.
network
low complexity
ivanti CWE-77
7.2