Adobe Connect CSRF Vulnerability (APSB21-112)

Adobe Connect is prone to a cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Connect <= 11.3 Arbitrary File System Write Vulnerability (APSB21-112)

The version of Adobe Connect installed on the remote host is prior to 11.4. It is, therefore, affected by a vulnerability as referenced in the apsb21-112 advisory. - Cross-Site Request Forgery CSRF CWE-352 potentially leading to Arbitrary file system write CVE-2021-43014 Note that Nessus has not...

Adobe Creative Cloud Desktop Application <= 5.4 Arbitrary File System Write (APSB21-76) (deprecated)

The version of Adobe Creative Cloud Desktop Application installed on the remote Windows host is prior or equal to 5.4. It is, therefore, affected by an arbitrary file system write vulnerability. Creation of a temporary file in a directory with incorrect permissions allows an authenticated, local...

Adobe Creative Cloud < 5.5 Arbitrary file system write (APSB21-76) (macOS)

The version of Adobe Creative Cloud installed on the remote macOS host is prior to 5.5. It is, therefore, affected by a vulnerability as referenced in the apsb21-76 advisory. - Adobe Creative Cloud Desktop Application version 5.4 and earlier is affected by a file handling vulnerability that could...

Adobe Reader Classic 2020 Security Update (APSB21-55) - Windows

The host is missing an important security update according to Adobe September update. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Digital Editions <= 4.5.11.187646 Multiple Vulnerabilities (macOS) (APSB21-80)

Adobe Digital Editions version 4.5.11.187646 and earlier is affected by multiple vulnerabilities, as follows: - An OS command injection vulnerability that can be exploited by a local attacker to execute arbitrary code. CVE-2021-39826 - An arbitrary file system write vulnerability that can be...

Adobe Digital Editions Arbitrary File System Write Vulnerability

Adobe Digital Editions software provides an engaging way to help you view and manage eBooks and other digital publications. Adobe Digital Editions 4.5.11.187646 and earlier versions are vulnerable to an arbitrary file system write vulnerability. The vulnerability stems from the creation of...

APSB21-76 Security update available for AdobeCreative Cloud Desktop Applications

Adobe has released an update for the Creative Cloud Desktop for Windows and macOS. This update includes a fix for a critical vulnerability that could lead to arbitrary file system read in the context of current user...

APSB21-85 Security update available for Adobe XMP Toolkit SDK

Adobe has released updates for XMP Toolkit SDK. These updates resolve an important vulnerability. Successful exploitation could lead to arbitrary file system read in the context of the current user...

CVE-2021-36008

Adobe Illustrator version 25.2.3 and earlier is affected by an Use-after-free vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to read arbitrary file system information in the context of the current user. Exploitation of this issue...

Adobe Bridge 11.x < 11.1.1 Multiple Vulnerabilities (APSB21-69)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 11.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb21-69 advisory. - Adobe Bridge version 11.1 and earlier is affected by a memory corruption vulnerability due to insecure...

Adobe Bridge 11.x < 11.1.1 Multiple Vulnerabilities (APSB21-69)

The version of Adobe Bridge installed on the remote Windows host is prior to 11.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb21-69 advisory. - Adobe Bridge version 11.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of...

CVE-2021-28584

Magento versions 2.4.2 and earlier, 2.4.1-p1 and earlier and 2.3.6-p1 and earlier are affected by a Path Traversal vulnerability when creating a store with child theme.Successful exploitation could lead to arbitrary file system write by an authenticated attacker. Access to the admin console is...

Adobe Creative Cloud Desktop Application Arbitrary File System Write Vulnerability

Adobe Creative Cloud Desktop Application is the management software for various Creative Cloud applications and services. An arbitrary file system write vulnerability exists in Adobe Creative Cloud Desktop Application 2.4 and earlier versions. The vulnerability originates from the creation of...

Adobe Animate 缓冲区错误漏洞

Adobe Animate is a multimedia authoring and computer animation program. An out-of-bounds read vulnerability exists in Adobe Animate 21.0.6 and earlier versions. An attacker can exploit the vulnerability to read arbitrary file systems...

Firejail: Privilege escalation

Background A SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. Description It was discovered that a flaw in Firejail’s OverlayFS code allowed restricted programs to escape sandbox. Impac...

CVE-2021-21100

Adobe Digital Editions version 4.5.11.187245 and earlier is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user. Exploitation of this issue...

Privilege escalation

Adobe Digital Editions version 4.5.11.187245 and earlier is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user. Exploitation of this issue...

CVE-2021-21100 Adobe Digital Editions Arbitrary file system write vulnerability

Adobe Digital Editions version 4.5.11.187245 and earlier is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user. Exploitation of this issue...

Adobe Digital Editions Arbitrary File System Write Vulnerability (APSB21-26) - Mac OS X

Adobe Digital Edition is prone to arbitrary file system write vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...