|
1881
|
7.8 |
HIGH
Local
|
adobe
|
illustrator
|
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user.…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2024-41857
|
2024-09-16 22:18 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1882
|
5.5 |
MEDIUM
Local
|
adobe
|
after_effects
|
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-41867
|
2024-09-16 22:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1883
|
7.0 |
HIGH
Local
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Acrobat Reader versions 20.005.30636, 24.002.21005, 24.001.30159, 20.005.30655, 24.002.20965, 24.002.20964, 24.001.30123, 24.003.20054 and earlier are affected by a Time-of-check Time-of-use (TOCTOU)…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2024-39420
|
2024-09-16 22:15 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1884
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
|
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged att…
|
NVD-CWE-noinfo
|
CVE-2024-39412
|
2024-09-16 22:15 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1885
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
|
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a…
|
CWE-352
Origin Validation Error
|
CVE-2024-39410
|
2024-09-16 22:15 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1886
|
6.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
|
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a…
|
CWE-352
Origin Validation Error
|
CVE-2024-39409
|
2024-09-16 22:15 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1887
|
6.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
|
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a…
|
CWE-352
Origin Validation Error
|
CVE-2024-39408
|
2024-09-16 22:15 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1888
|
3.5 |
LOW
Network
|
adobe
|
experience_manager
|
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could lead to a security feature bypass. A low-privileged attacker could leverage …
|
NVD-CWE-noinfo
|
CVE-2024-41839
|
2024-09-16 22:15 |
2024-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1889
|
7.5 |
HIGH
Network
gnu
fedoraproject
netapp
debian
|
gnutls
fedora
active_iq_unified_manager
debian_linux
|
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certifi…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2024-0567
|
2024-09-16 22:15 |
2024-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1890
|
7.5 |
HIGH
Network
gnu
fedoraproject
redhat
|
gnutls
fedora
enterprise_linux
|
A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS#1 v1.5 padding. This issu…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-0553
|
2024-09-16 22:15 |
2024-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
