Skip to main content
CVE-2018-4936 MEDIUM POC PATCH THREAT This Month

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Heap Overflow vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Adobe Information Disclosure Buffer Overflow Flash Player Desktop Runtime Flash Player
NVD Exploit-DB
CVSS 3.1
6.5
EPSS
29.1%
CVE-2018-4934 MEDIUM POC PATCH THREAT This Month

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Adobe Information Disclosure Buffer Overflow Flash Player Desktop Runtime Flash Player
NVD Exploit-DB
CVSS 3.1
6.5
EPSS
23.4%
CVE-2018-4933 MEDIUM This Month

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Flash Player Flash Player Desktop Runtime
NVD
CVSS 3.1
6.5
EPSS
4.8%
CVE-2018-4941 MEDIUM This Month

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Information Disclosure Adobe Coldfusion
NVD
CVSS 3.1
6.1
EPSS
1.8%
CVE-2018-4940 MEDIUM This Month

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Information Disclosure Adobe Coldfusion
NVD
CVSS 3.1
6.1
EPSS
1.8%
CVE-2018-4931 MEDIUM This Month

Adobe Experience Manager versions 6.1 and earlier have an exploitable stored cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Information Disclosure Adobe Experience Manager
NVD
CVSS 3.0
6.1
EPSS
1.9%
CVE-2018-4930 MEDIUM This Month

Adobe Experience Manager versions 6.3 and earlier have an exploitable Cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Information Disclosure Adobe Experience Manager
NVD
CVSS 3.0
6.1
EPSS
1.9%
CVE-2018-4929 MEDIUM This Month

Adobe Experience Manager versions 6.2 and earlier have an exploitable stored cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Information Disclosure Adobe Experience Manager
NVD
CVSS 3.0
6.1
EPSS
1.9%
CVE-2018-4921 MEDIUM This Month

Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload Adobe Information Disclosure Connect
NVD
CVSS 3.0
6.1
EPSS
4.2%
CVE-2018-4926 MEDIUM This Month

Adobe Digital Editions versions 4.5.7 and below have an exploitable Stack Overflow vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
5.5
EPSS
6.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy