|
198221
|
9.8 |
CRITICAL
Network
|
adobe
|
acrobat_reader_dc
acrobat_dc
acrobat
acrobat_reader
|
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. A…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11293
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198222
|
10.0 |
CRITICAL
Network
|
adobe
|
connect
|
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-11291
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198223
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has been resolved by adding a feature that enables Connect adminis…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2017-11290
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198224
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.
|
CWE-79
Cross-site Scripting
|
CVE-2017-11289
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198225
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.
|
CWE-79
Cross-site Scripting
|
CVE-2017-11288
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198226
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.
|
CWE-79
Cross-site Scripting
|
CVE-2017-11287
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198227
|
5.5 |
MEDIUM
Local
|
adobe
|
digital_editions
|
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. Adobe Digital Editions parses crafted XML files in an unsafe manner, which could lead to sensitive information disclosure.
|
CWE-200
Information Exposure
|
CVE-2017-11273
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198228
|
6.1 |
MEDIUM
Network
|
elastic
|
kibana
|
The Kibana fix for CVE-2017-8451 was found to be incomplete. With X-Pack installed, Kibana versions before 6.0.1 and 5.6.5 have an open redirect vulnerability on the login page that would enable an a…
|
CWE-601
Open Redirect
|
CVE-2017-11482
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198229
|
6.1 |
MEDIUM
Network
|
elastic
|
kibana
|
Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions…
|
CWE-79
Cross-site Scripting
|
CVE-2017-11481
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198230
|
7.5 |
HIGH
Network
|
elasticsearch
|
packetbeat
|
Packetbeat versions prior to 5.6.4 are affected by a denial of service flaw in the PostgreSQL protocol handler. If Packetbeat is listening for PostgreSQL traffic and a user is able to send arbitrary …
|
NVD-CWE-noinfo
|
CVE-2017-11480
|
2024-11-21 12:07 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
