Skip to main content
CVE-2014-8068 MEDIUM This Month

Adobe Digital Editions (DE) 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to obtain sensitive information by sniffing the network, as. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Adobe Information Disclosure Digital Editions
NVD
CVSS 2.0
5.0
EPSS
0.4%
CVE-2014-8079 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the MAYO theme 7.x-1.x before 7.x-1.3 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity.

XSS Mayo
NVD
CVSS 2.0
4.0
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy