VYPR

Vendor CVEs

Adobe Inc.

All CVEs

7,262 total · sorted by risk
  • CVE-2018-5022HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-5010HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-5008HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.07

    Adobe Flash Player 30.0.0.113 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-5004HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.04

    Adobe Experience Manager versions 6.2 and 6.3 have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure.

  • CVE-2018-12809HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.05

    Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure.

  • CVE-2018-12795HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-12786HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-12763HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-12762HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-12757HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.08

    Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-13179HigJul 5, 2018
    risk 0.49cvss 7.5epss 0.01

    The mintToken function of a smart contract implementation for Air-Contact Token (AIR), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

  • CVE-2018-4942HigMay 19, 2018
    risk 0.49cvss 7.5epss 0.04

    Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-4925HigMay 19, 2018
    risk 0.49cvss 7.5epss 0.04

    Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2018-4871HigJan 9, 2018
    risk 0.49cvss 7.5epss 0.06

    An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This vulnerability occurs because of computation that reads data that is past the end of the target buffer. The use of an invalid (out-of-range) pointer offset during access of internal data…

  • CVE-2017-3111HigDec 9, 2017
    risk 0.49cvss 7.5epss 0.07

    An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. Sensitive tokens are included in http GET requests under certain circumstances.

  • CVE-2017-16366HigDec 9, 2017
    risk 0.49cvss 7.5epss 0.06

    An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability is an instance of a security bypass vulnerability in the…

  • CVE-2017-11286HigDec 1, 2017
    risk 0.49cvss 7.5epss 0.08

    Adobe ColdFusion has an XML external entity (XXE) injection vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.

  • CVE-2017-3110HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.05

    Adobe Experience Manager 6.1 and earlier has a sensitive data exposure vulnerability.

  • CVE-2017-3107HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.07

    Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability.

  • CVE-2017-3091HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.08

    Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-11280HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.06

    Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-11279HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.07

    Adobe Digital Editions 4.5.4 and earlier has an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-11278HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.06

    Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-11277HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.06

    Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-11276HigAug 11, 2017
    risk 0.49cvss 7.5epss 0.06

    Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3101HigJul 17, 2017
    risk 0.49cvss 7.5epss 0.06

    Adobe Connect versions 9.6.1 and earlier have a clickjacking vulnerability. Successful exploitation could lead to a clickjacking attack.

  • CVE-2017-3087HigJun 20, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Captivate versions 9 and earlier have an information disclosure vulnerability resulting from abuse of the quiz reporting feature in Captivate.

  • CVE-2017-3067HigMay 9, 2017
    risk 0.49cvss 7.5epss 0.05

    Adobe Experience Manager Forms versions 6.2, 6.1, 6.0 have an information disclosure vulnerability resulting from abuse of the pre-population service in AEM Forms.

  • CVE-2017-3009HigMar 31, 2017
    risk 0.49cvss 7.5epss 0.04

    Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable buffer overflow vulnerability in the JPEG2000 parser. Successful exploitation could lead to information disclosure.

  • CVE-2017-2981HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2980HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2979HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2978HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2977HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2976HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2975HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2017-2974HigFeb 15, 2017
    risk 0.49cvss 7.5epss 0.03

    Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2016-7889HigDec 15, 2016
    risk 0.49cvss 7.5epss 0.06

    Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure.

  • CVE-2016-7887HigDec 15, 2016
    risk 0.49cvss 7.5epss 0.05

    Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure.

  • CVE-2016-6936HigSep 16, 2016
    risk 0.49cvss 7.5epss 0.04

    Adobe AIR SDK & Compiler before 23.0.0.257 on Windows does not support Android runtime-analytics transport security, which might allow remote attackers to obtain sensitive information by leveraging access to a network over which analytics data is sent.

  • CVE-2016-4216HigJul 13, 2016
    risk 0.49cvss 7.5epss 0.04

    XMPCore in Adobe XMP Toolkit for Java before 5.1.3 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

  • CVE-2016-4116HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4115HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4114HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4113HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4112HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4111HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4110HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-4109HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

  • CVE-2016-1110HigMay 11, 2016
    risk 0.49cvss 7.5epss 0.08

    Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

Page 24 of 146