CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2023/09/11 2:15 p.m.•1 views

CVE-2022-28835

Adobe InCopy versions 17.1 and earlier and 16.4.1 and earlier are affected by an Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score

NVD•added 2023/09/11 2:15 p.m.•18 views

CVE-2022-28835

7.8CVSS7.7AI score0.00203EPSS

NVD•added 2023/09/11 2:15 p.m.•15 views

CVE-2022-28834

NVD•added 2023/09/11 2:15 p.m.•14 views

CVE-2022-28836

Prion•added 2023/09/11 2:15 p.m.•22 views

Cross site scripting

4.4CVSS7.8AI score0.00148EPSS

Prion•added 2023/09/11 2:15 p.m.•22 views

Design/Logic Flaw

4.4CVSS7.7AI score0.00203EPSS

Vulnrichment•added 2023/09/11 1:6 p.m.•11 views

CVE-2022-28834 Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00148EPSS

Cvelist•added 2023/09/11 1:6 p.m.•12 views

CVE-2022-28834 Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS8AI score0.00148EPSS

Vulnrichment•added 2023/09/11 1:6 p.m.•9 views

CVE-2022-28835 Adobe InCopy Font Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00203EPSS

CVE•added 2023/09/11 1:6 p.m.•87 views

CVE-2022-28835

Adobe InCopy is affected by CVE-2022-28835, a Use-After-Free vulnerability in InCopy 17.1 and earlier and 16.4.1 and earlier that could allow arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file (user interaction). The issue is docum...

7.8CVSS7.7AI score0.00203EPSS

CVE•added 2023/09/11 1:6 p.m.•77 views

CVE-2022-28834

Adobe InCopy is affected by an out-of-bounds write vulnerability that can grant arbitrary code execution in the context of the current user. Affected versions are 17.1 and earlier, and 16.4.1 and earlier. Exploitation requires user interaction (a victim must open a malicious file); the issue is d...

Cvelist•added 2023/09/11 1:6 p.m.•19 views

CVE-2022-28835 Adobe InCopy Font Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00203EPSS

Cvelist•added 2023/09/11 1:6 p.m.•18 views

CVE-2022-28836 Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS8AI score0.00148EPSS

CVE•added 2023/09/11 1:6 p.m.•106 views

CVE-2022-28836

CVE-2022-28836 affects Adobe InCopy versions 17.1 and earlier, and 16.4.1 and earlier. The issue is an out-of-bounds write in InCopy that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Remediat...

Vulnrichment•added 2023/09/11 1:6 p.m.•10 views

CVE-2022-28836 Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00148EPSS

CNVD•added 2023/04/16 12:0 a.m.•29 views

Adobe InCopy Resource Management Error Vulnerability (CNVD-2023-29805)

Adobe InCopy is a text editing software for authoring by Adobe, Inc. Adobe InCopy suffers from a resource management error vulnerability that stems from a mix-up in the program's instructions responsible for freeing memory. An attacker could exploit this vulnerability to cause arbitrary code...

7.6AI score0.00234EPSS

Exploits0Affected Software1

OSV•added 2023/04/12 10:15 p.m.•1 views

CVE-2023-22235

InCopy versions 18.1 and earlier, 17.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00234EPSS

NVD•added 2023/04/12 10:15 p.m.•13 views

CVE-2023-22235

7.8CVSS7.8AI score0.00234EPSS

Prion•added 2023/04/12 10:15 p.m.•17 views

Design/Logic Flaw

4.4CVSS7.8AI score0.00234EPSS