Lucene search
K
AdobeCampaign

13 matches found

CVE
CVE
added 2019/07/18 9:45 p.m.169 views

CVE-2019-7846

Adobe Campaign Classic (Windows/Linux) 18.10.5-8984 and earlier is affected by an improper error handling vulnerability that could lead to information disclosure for the current user. The Red Hat advisory confirms the same issue, describing it as an information disclosure vulnerability in ACC. Wh...

7.5CVSS7.2AI score0.03121EPSS
CVE
CVE
added 2019/07/18 9:43 p.m.115 views

CVE-2019-7850

CVE-2019-7850 affects Adobe Campaign Classic, with the vulnerability described as a Command Injection that could lead to arbitrary code execution in the context of the current user. Affected installations include Campaign Classic 18.10.5-8984 and earlier versions. The available connected document...

9.8CVSS9.6AI score0.05758EPSS
CVE
CVE
added 2019/07/18 9:43 p.m.101 views

CVE-2019-7848

CVE-2019-7848 affects Adobe Campaign Classic up to version 18.10.5-8984. The issue is described as an inadequate access control vulnerability that could allow information disclosure in the context of the current user. Public sources in the connected set confirm affected product/version scope and ...

7.5CVSS7.1AI score0.03121EPSS
CVE
CVE
added 2019/07/18 9:46 p.m.100 views

CVE-2019-7843

Adobe Campaign Classic is affected by CVE-2019-7843 due to insufficient input validation in ACC 18.10.5-8984 and earlier. Exploitation could lead to information disclosure in the context of the current user. Public details in the connected documents identify the affected product (Adobe Campaign C...

7.5CVSS7.6AI score0.03207EPSS
CVE
CVE
added 2019/07/18 9:44 p.m.100 views

CVE-2019-7847

Adobe Campaign Classic (ACC) is affected by CVE-2019-7847: an XXE in ACC 18.10.5-8984 and earlier allows arbitrary read access to the filesystem in the context of the current user. Mitigation: apply the security update from APSB19-28 (Adobe Campaign) or upgrade to a patched ACC release; vendor ad...

7.5CVSS7.1AI score0.03251EPSS
CVE
CVE
added 2019/07/18 9:45 p.m.99 views

CVE-2019-7941

Adobe Campaign Classic is affected by CVE-2019-7941 for versions 18.10.5-8984 and earlier, with an Information Exposure Through an Error Message vulnerability that could lead to information disclosure in the context of the current user. Connected sources (Red Hat CVE entry and related advisories)...

7.5CVSS7.1AI score0.03121EPSS
CVE
CVE
added 2022/12/19 10:0 a.m.97 views

CVE-2022-42343

CVE-2022-42343 affects Adobe Campaign Classic (versions 7.3.1 and earlier; 8.3.9 and earlier) with a Server-Side Request Forgery (SSRF) flaw that allows a low-privilege authenticated attacker to cause arbitrary file-system reads by injecting arbitrary URLs. The vulnerability arises from insuffici...

6.5CVSS6.5AI score0.01364EPSS
CVE
CVE
added 2021/11/17 3:44 p.m.60 views

CVE-2021-40745

CVE-2021-40745 affects Adobe Campaign 21.2.1 and earlier. A path traversal vulnerability allows an unauthenticated attacker to read arbitrary server files by leveraging an exposed XML file to enumerate other files on the server. This is documented across multiple sources (NVD description, CNVD/CN...

7.5CVSS7.5AI score0.03604EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.58 views

CVE-2017-2969

Adobe Campaign versions 16.4 Build 8724 and earlier are affected by a cross-site scripting (XSS) vulnerability (CVE-2017-2969). The issue is documented in CVE-2017-2969 and is addressed by Adobe’s APSB17-06 security update for Campaign, which resolves the XSS in the client console/inputs. Connect...

6.1CVSS5.9AI score0.01669EPSS
CVE
CVE
added 2017/04/12 2:0 p.m.58 views

CVE-2017-2989

CVE-2017-2989 affects Adobe Campaign (Build 8770 and earlier). It describes an input validation bypass that could be exploited to read, write, or delete data in the Campaign database. Affected product: Adobe Campaign (Windows/Linux); root cause: input validation bypass in the Campaign database ha...

9.1CVSS9AI score0.03688EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.50 views

CVE-2017-2968

CVE-2017-2968 affects Adobe Campaign versions 16.4 Build 8724 and earlier, described as a code injection vulnerability. The connected advisories indicate that an authenticated user with access to the client console could upload and execute a malicious file, potentially granting read/write access ...

9.1CVSS9.3AI score0.02809EPSS
CVE
CVE
added 2026/06/09 8:59 p.m.34 views

CVE-2026-48303

Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by an Incorrect Authorization vulnerability (CWE-863) that could allow arbitrary code execution in the context of the current user. Exploitation does not require user interaction; the CVSS 3.1 vector is AV:N/AC:L/PR:N...

10CVSS6.2AI score0.00553EPSS
CVE
CVE
added 2026/06/30 3:8 p.m.32 views

CVE-2026-48286

Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization vulnerability (CWE-863) that could permit arbitrary code execution in the context of the current user. Exploitation does not require user interaction, and the impact is limited to the use...

10CVSS6.4AI score0.00712EPSS