|
196601
|
6.1 |
MEDIUM
Network
|
magento
|
magento
|
Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
|
CWE-79
Cross-site Scripting
|
CVE-2020-9665
|
2024-11-21 14:41 |
2020-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196602
|
9.8 |
CRITICAL
Network
|
magento
|
magento
|
Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a php object injection vulnerability. Successful exploitation could lead to arbitrary code execution.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-9664
|
2024-11-21 14:41 |
2020-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196603
|
5.3 |
MEDIUM
Network
|
adobe
|
adobe_reader
|
Adobe Reader Mobile versions 20.0.1 and earlier have a directory traversal vulnerability. Successful exploitation could lead to information disclosure.
|
CWE-22
Path Traversal
|
CVE-2020-9663
|
2024-11-21 14:41 |
2020-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196604
|
7.8 |
HIGH
Local
|
adobe
|
download_manager
|
Adobe Download Manager version 2.0.0.518 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
|
CWE-77
Command Injection
|
CVE-2020-9688
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196605
|
9.8 |
CRITICAL
Network
|
adobe
|
creative_cloud_desktop_application
|
Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Successful exploitation could lead to arbitrary file system write.
|
CWE-59
Link Following
|
CVE-2020-9682
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196606
|
7.8 |
HIGH
Local
|
adobe
|
coldfusion
|
Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privileg…
|
CWE-426
Untrusted Search Path
|
CVE-2020-9673
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196607
|
7.8 |
HIGH
Local
|
adobe
|
coldfusion
|
Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privileg…
|
CWE-426
Untrusted Search Path
|
CVE-2020-9672
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196608
|
9.8 |
CRITICAL
Network
|
adobe
|
creative_cloud_desktop_application
|
Adobe Creative Cloud Desktop Application versions 5.1 and earlier have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-9671
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196609
|
9.8 |
CRITICAL
Network
|
adobe
|
creative_cloud_desktop_application
|
Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. Successful exploitation could lead to privilege escalation.
|
CWE-59
Link Following
|
CVE-2020-9670
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196610
|
9.8 |
CRITICAL
Network
|
adobe
|
creative_cloud
|
Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a lack of exploit mitigations vulnerability. Successful exploitation could lead to privilege escalation.
|
CWE-269
Improper Privilege Management
|
CVE-2020-9669
|
2024-11-21 14:41 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
