VYPR

Vendor CVEs

Adobe Inc.

All CVEs

7,397 total · sorted by risk
  • CVE-2021-43750MedDec 20, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Premiere Rush versions 1.5.16 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue…

  • CVE-2021-43749MedDec 20, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Premiere Rush versions 1.5.16 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue…

  • CVE-2021-43748MedDec 20, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Premiere Rush versions 1.5.16 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue…

  • CVE-2021-43746MedDec 20, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Premiere Rush versions 1.5.16 (and earlier) allows access to an uninitialized pointer vulnerability that allows remote attackers to disclose sensitive information on affected installations. User interaction is required to exploit this vulnerability in that the target must…

  • CVE-2021-43016MedNov 22, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe InCopy version 16.4 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user.…

  • CVE-2021-42733MedNov 22, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Bridge version 11.1.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user.…

  • CVE-2021-40774MedNov 22, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Prelude version 10.1 (and earlier) is affected by a null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user.…

  • CVE-2021-40773MedNov 22, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Prelude version 10.1 (and earlier) is affected by a null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user.…

  • CVE-2021-36003MedNov 19, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose arbitrary memory information in the context of the current user.…

  • CVE-2021-42268MedNov 18, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Animate version 21.0.9 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted FLA file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current…

  • CVE-2021-40761MedNov 18, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe After Effects version 18.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current…

  • CVE-2021-40756MedNov 18, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe After Effects version 18.4.1 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current…

  • CVE-2021-40716MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    XMP Toolkit SDK versions 2021.07 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user…

  • CVE-2021-39861MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the current user.…

  • CVE-2021-39860MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to disclose sensitive user memory.…

  • CVE-2021-39854MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-39853MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-39852MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-39851MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-39850MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-39849MedSep 29, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-36077MedSep 1, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SVG file, potentially resulting in local application denial of service in the context of the current user. User interaction is required to exploit…

  • CVE-2021-36058MedSep 1, 2021
    risk 0.36cvss 5.5epss 0.02

    XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Integer Overflow vulnerability potentially resulting in application-level denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

  • CVE-2021-36056MedSep 1, 2021
    risk 0.36cvss 5.5epss 0.04

    XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

  • CVE-2021-28619MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Animate version 21.0.6 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-28618MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Animate version 21.0.6 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-28617MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe Animate version 21.0.6 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-28615MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe After Effects version 18.2 (and earlier) is affected by an Our-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-28609MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe After Effects version 18.2 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-28600MedAug 24, 2021
    risk 0.36cvss 5.5epss 0.02

    Adobe After Effects version 18.2 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user.…

  • CVE-2021-35985MedAug 20, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application…

  • CVE-2021-35984MedAug 20, 2021
    risk 0.36cvss 5.5epss 0.02

    Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Null pointer dereference vulnerability. An authenticated attacker could leverage this vulnerability achieve an application denial-of-service…

  • CVE-2021-28623MedJun 28, 2021
    risk 0.36cvss 5.5epss 0.00

    Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions against the installer to perform high privileged actions. Exploitation of this…

  • CVE-2021-28597MedJun 28, 2021
    risk 0.36cvss 5.5epss 0.00

    Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions against the installer to perform high privileged actions. Exploitation of this…

  • CVE-2021-21096MedApr 15, 2021
    risk 0.36cvss 5.5epss 0.01

    Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. A low-privileged attacker could leverage this vulnerability to achieve application denial-of-service in the context of the…

  • CVE-2020-24441MedNov 12, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat Reader for Android version 20.6.2 (and earlier) does not properly restrict access to directories created by the application. This could result in disclosure of sensitive information stored in databases used by the application. Exploitation requires a victim to…

  • CVE-2020-24421MedOct 21, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. The impact is limited to causing a denial-of-service of the client application. User interaction is required to exploit this issue.

  • CVE-2020-9712MedAug 19, 2020
    risk 0.36cvss 5.5epss 0.03

    Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass.

  • CVE-2020-9703MedAug 19, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a stack exhaustion vulnerability. Successful exploitation could lead to application denial-of-service.

  • CVE-2020-9702MedAug 19, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a stack exhaustion vulnerability. Successful exploitation could lead to application denial-of-service.

  • CVE-2020-9697MedAug 19, 2020
    risk 0.36cvss 5.5epss 0.03

    Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a disclosure of sensitive data vulnerability. Successful exploitation could lead to memory leak.

  • CVE-2020-9696MedAug 19, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass.

  • CVE-2020-9692MedJul 29, 2020
    risk 0.36cvss 6.5epss 0.04

    Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2020-9689MedJul 29, 2020
    risk 0.36cvss 6.5epss 0.04

    Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2020-9649MedJul 17, 2020
    risk 0.36cvss 5.5epss 0.03

    Adobe Media Encoder versions 14.2 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2019-8252MedJul 6, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a type confusion vulnerability. Successful exploitation could lead to…

  • CVE-2019-8251MedJul 6, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a type confusion vulnerability. Successful exploitation could lead to…

  • CVE-2020-9557MedJun 26, 2020
    risk 0.36cvss 5.5epss 0.03

    Adobe Bridge versions 10.0.1 and earlier version have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2020-3809MedJun 26, 2020
    risk 0.36cvss 5.5epss 0.02

    Adobe After Effects versions 17.0.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .

  • CVE-2020-9629MedJun 26, 2020
    risk 0.36cvss 5.5epss 0.03

    Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

Page 82 of 148