Lucene search
K

273 matches found

OSV
OSV
added 2021/06/28 3:15 p.m.4 views

CVE-2021-28588

Adobe RoboHelp Server version 2019.0.9 and earlier is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

8.8CVSS7.8AI score0.06215EPSS
Exploits0References1
Prion
Prion
added 2021/06/28 3:15 p.m.18 views

Path traversal

Adobe RoboHelp Server version 2019.0.9 and earlier is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

9CVSS8.6AI score0.06215EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/28 2:13 p.m.29 views

CVE-2021-28588 Adobe RoboHelp Server folderId Directory Traversal Remote Code Execution Vulnerability

Adobe RoboHelp Server version 2019.0.9 and earlier is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

8.8CVSS8.8AI score0.06215EPSS
Exploits0References1
CVE
CVE
added 2021/06/28 2:13 p.m.58 views

CVE-2021-28588

CVE-2021-28588 affects Adobe RoboHelp Server up to version 2019.0.9. The root cause is a path traversal flaw in the server when processing requests (notably the folderId parameter), which allows an attacker to execute arbitrary code. Exploitation could occur via a crafted HTTP POST and, per sourc...

9CVSS8.7AI score0.06215EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/06/11 12:0 a.m.32 views

Adobe RoboHelp Server <= 2019.0.9 Arbitrary Code Execution (APSB21-44)

The version of Adobe RoboHelp Server installed on the remote host is less than or equal to 2019.0.9. It is, therefore, affected by an arbitrary code execution vulnerability as referenced in the apsb21-44 advisory. Note that Nessus has not tested for this issue but has instead relied only on the...

9CVSS8.7AI score0.06215EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/06/10 12:0 a.m.37 views

Adobe RoboHelp Server folderId Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe RoboHelp Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the RoboHelp server...

8.8CVSS4.8AI score0.06215EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/09 12:0 a.m.12 views

Adobe RoboHelp Server Path Traversal Vulnerability

Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. A path traversal vulnerability exists in Adobe RoboHelp Server 2019.0.9 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code...

9CVSS7.3AI score0.06215EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/06/08 11:0 p.m.3 views

CVE-2021-28588

Adobe RoboHelp Server version 2019.0.9 and earlier is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

9CVSS6.4AI score0.06215EPSS
Exploits0References2
Adobe
Adobe
added 2021/06/08 12:0 a.m.37 views

APSB21-44 Security update available for Adobe RoboHelp Server

Adobe has released a security update for RoboHelp Server. This update resolves a vulnerability rated critical. Successful exploitation could lead to arbitrary code execution in the context of the current user...

9CVSS9.2AI score0.06215EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/06/08 12:0 a.m.9 views

Adobe RoboHelp 路径遍历漏洞

Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. A path traversal vulnerability exists in Adobe RoboHelp Server 2019.0.9 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code...

9CVSS6.1AI score0.06215EPSS
Exploits0References4
OSV
OSV
added 2021/04/19 1:15 p.m.4 views

CVE-2021-21070

Adobe Robohelp version 2020.0.3 and earlier is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges...

6.5CVSS5.8AI score0.01598EPSS
Exploits0References1
NVD
NVD
added 2021/04/19 1:15 p.m.24 views

CVE-2021-21070

Adobe Robohelp version 2020.0.3 and earlier is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges...

9.3CVSS0.01598EPSS
Exploits0References1
Prion
Prion
added 2021/04/19 1:15 p.m.21 views

Path traversal

Adobe Robohelp version 2020.0.3 and earlier is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges...

9.3CVSS6.5AI score0.01598EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/04/19 12:28 p.m.9 views

CVE-2021-21070 Privilege Escalation Vulnerability in Adobe RoboHelp

Adobe Robohelp version 2020.0.3 and earlier is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges...

6.5CVSS6.7AI score0.01598EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/04/19 12:28 p.m.29 views

CVE-2021-21070 Privilege Escalation Vulnerability in Adobe RoboHelp

Adobe Robohelp version 2020.0.3 and earlier is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges...

6.5CVSS6.7AI score0.01598EPSS
Exploits0References1
CVE
CVE
added 2021/04/19 12:28 p.m.69 views

CVE-2021-21070

CVE-2021-21070 (Adobe RoboHelp) affects RoboHelp 2020.0.3 and earlier; root cause is an uncontrolled search path element that can enable privilege escalation. An attacker with write access on the host could escalate to higher privileges by exploiting the vulnerable RoboHelp. The issue is reported...

9.3CVSS6.5AI score0.01598EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/04/16 12:0 a.m.43 views

Adobe RoboHelp 2020 < RH2020.0.4 Privilege Escalation (APSB21-20)

The version of Adobe RoboHelp 2020 installed on the remote host is prior to RH2020.0.4. It is, therefore, affected by a privilege escalation vulnerability as referenced in the apsb21-20 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's...

9.3CVSS6.6AI score0.01598EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/14 12:0 a.m.11 views

Adobe RoboHelp Uncontrolled Search Path Element Vulnerability

Adobe RoboHelp is a software application from Adobe USA. Next-generation software for authoring and publishing help, strategy, and knowledge base content. Adobe RoboHelp is vulnerable to an uncontrolled search path element vulnerability. An attacker can exploit this vulnerability to elevate...

9.3CVSS6.6AI score0.01598EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2021/04/13 4:40 p.m.90 views

Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop

Adobe has released security patches tackling four critical vulnerabilities in Adobe Bridge, along with other critical and important-rated updates for bugs in Adobe Digital Editions, Adobe Photoshop and RoboHelp. In all, Adobe fixed 10 security holes in its products during its scheduled April...

0.9AI score0.0653EPSS
Exploits0References6
Adobe
Adobe
added 2021/04/13 12:0 a.m.35 views

APSB21-20 Security update available for RoboHelp

Adobe has released a security update for RoboHelp. This update resolves a vulnerability rated important. Successful exploitaton could lead to privilege escalation in the context of current user...

9.3CVSS6.8AI score0.01598EPSS
Exploits0Affected Software1
Rows per page
Query Builder