Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. Date published : 2020-03-25 https://helpx.adobe.com/security/products/photoshop/apsb20-14.html
Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution. Date published : 2020-03-25 https://helpx.adobe.com/security/products/photoshop/apsb20-14.html
Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. Date published : 2020-03-25 https://helpx.adobe.com/security/products/photoshop/apsb20-14.html
Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution. Date published : 2020-03-25 https://helpx.adobe.com/security/products/photoshop/apsb20-14.html
Adobe Experience Manager versions 6.5 and earlier have a server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure. Date published : 2020-03-25 https://helpx.adobe.com/security/products/experience-manager/apsb20-15.html
Adobe Genuine Integrity Service versions Version 6.4 and earlier have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation. Date published : 2020-03-25 https://helpx.adobe.com/security/products/integrity_service/apsb20-12.html https://www.zerodayinitiative.com/advisories/ZDI-20-372/
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a remote file read vulnerability. Successful exploitation could lead to arbitrary file read from the coldfusion install directory. Date published : 2020-03-25 https://helpx.adobe.com/security/products/coldfusion/apsb20-16.html
Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1677 http://www.openwall.com/lists/oss-security/2020/03/25/2
Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1676 http://www.openwall.com/lists/oss-security/2020/03/25/2
A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability. Date published : 2020-03-25...
Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1732 http://www.openwall.com/lists/oss-security/2020/03/25/2
Jenkins OpenShift Pipeline Plugin 1.0.56 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1739 http://www.openwall.com/lists/oss-security/2020/03/25/2
Jenkins Pipeline: AWS Steps Plugin 1.40 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1741 http://www.openwall.com/lists/oss-security/2020/03/25/2
Jenkins Artifactory Plugin 3.6.0 and earlier transmits configured passwords in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure. Date published : 2020-03-25 https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1542%20%282%29 http://www.openwall.com/lists/oss-security/2020/03/25/2