Adobe : Security Vulnerabilities, CVEs, Published In 2016 (Information Leak) CVSS score >= 5

CVE-2016-7889

Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure.
Max CVSS
7.5
EPSS Score
0.30%
Published
2016-12-15
Updated
2016-12-22

CVE-2016-7888

Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak.
Max CVSS
5.3
EPSS Score
0.63%
Published
2016-12-15
Updated
2016-12-22

CVE-2016-7887

Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure.
Max CVSS
7.5
EPSS Score
0.34%
Published
2016-12-15
Updated
2021-09-08

CVE-2016-6936

Adobe AIR SDK & Compiler before 23.0.0.257 on Windows does not support Android runtime-analytics transport security, which might allow remote attackers to obtain sensitive information by leveraging access to a network over which analytics data is sent.
Max CVSS
7.5
EPSS Score
0.43%
Published
2016-09-16
Updated
2017-08-13

CVE-2016-4253

The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to obtain sensitive information via unspecified vectors.
Max CVSS
5.3
EPSS Score
0.21%
Published
2016-08-09
Updated
2017-08-16

CVE-2016-4169

Adobe Experience Manager 6.0, 6.1, and 6.2 allow attackers to obtain sensitive audit log event information via unspecified vectors.
Max CVSS
5.3
EPSS Score
0.17%
Published
2016-08-09
Updated
2017-08-16

CVE-2016-1112

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information via unspecified vectors.
Max CVSS
10.0
EPSS Score
0.57%
Published
2016-05-11
Updated
2016-12-01

CVE-2016-1092

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process memory via unspecified vectors, a different vulnerability than CVE-2016-1079.
Max CVSS
7.5
EPSS Score
0.36%
Published
2016-05-11
Updated
2016-12-01

CVE-2016-1079

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process memory via unspecified vectors, a different vulnerability than CVE-2016-1092.
Max CVSS
7.5
EPSS Score
1.05%
Published
2016-05-11
Updated
2016-12-01

CVE-2016-1035

Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which allows attackers to obtain sensitive information via unspecified vectors.
Max CVSS
7.5
EPSS Score
1.04%
Published
2016-04-12
Updated
2016-12-03

CVE-2016-0958

Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an unspecified impact via a crafted serialized Java object.
Max CVSS
7.8
EPSS Score
0.39%
Published
2016-02-10
Updated
2016-02-18

CVE-2016-0956

Public exploit
The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote attackers to obtain sensitive information via unspecified vectors.
Max CVSS
7.8
EPSS Score
2.73%
Published
2016-02-10
Updated
2018-10-09
12 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close