CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34133 – Adobe Illustrator CC 2023 v27.9 Vulnerability I
https://notcve.org/view.php?id=CVE-2024-34133
Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/illustrator/apsb24-45.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41865 – Adobe Dimension Untrusted Search Path lead to load malicious DLL swift.dll
https://notcve.org/view.php?id=CVE-2024-41865
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution. • https://helpx.adobe.com/security/products/dimension/apsb24-47.html • CWE-426: Untrusted Search Path •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39401 – Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
https://notcve.org/view.php?id=CVE-2024-39401
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an admin attacker. • https://helpx.adobe.com/security/products/magento/apsb24-61.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 4%CPEs: 1EXPL: 0CVE-2024-39397 – Adobe Commerce | Unrestricted Upload of File with Dangerous Type (CWE-434)
https://notcve.org/view.php?id=CVE-2024-39397
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution by an attacker. • https://helpx.adobe.com/security/products/magento/apsb24-61.html • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39402 – Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
https://notcve.org/view.php?id=CVE-2024-39402
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an admin attacker. • https://helpx.adobe.com/security/products/magento/apsb24-61.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •