Adobe Security Vulnerabilities (CVEs)
Track 1,279 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
CVE-2024-45115 is an improper authentication vulnerability in Adobe Commerce that allows attackers to bypass authentication mechanisms and gain elevat...
Oct 10, 2024Adobe Framemaker versions 2020.6, 2022.4 and earlier contain an unrestricted file upload vulnerability (CWE-434) that could allow arbitrary code execu...
Oct 9, 2024Adobe Framemaker versions 2020.6, 2022.4 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ...
Oct 9, 2024CVE-2024-45136 is an unrestricted file upload vulnerability in Adobe InCopy that allows attackers to upload malicious files which could lead to arbitr...
Oct 9, 2024Adobe Framemaker has an out-of-bounds read vulnerability when parsing malicious files, which could allow attackers to execute arbitrary code as the cu...
Oct 9, 2024CVE-2024-45152 is an out-of-bounds write vulnerability in Substance3D Stager that allows arbitrary code execution when a user opens a malicious file. ...
Oct 9, 2024CVE-2024-45141 is an out-of-bounds write vulnerability in Substance3D Stager that could allow arbitrary code execution when a user opens a malicious f...
Oct 9, 2024CVE-2024-45143 is a heap-based buffer overflow vulnerability in Adobe Substance3D Stager that could allow arbitrary code execution when a user opens a...
Oct 9, 2024CVE-2024-45139 is a heap-based buffer overflow vulnerability in Adobe Substance3D Stager that allows arbitrary code execution when a user opens a mali...
Oct 9, 2024CVE-2024-47418 is a use-after-free vulnerability in Adobe Animate that could allow arbitrary code execution when a user opens a malicious file. This a...
Oct 9, 2024Adobe Animate versions 23.0.7, 24.0.4 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory cont...
Oct 9, 2024Adobe Animate versions 23.0.7, 24.0.4 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a...
Oct 9, 2024Adobe Animate versions 23.0.7, 24.0.4 and earlier contain a use-after-free vulnerability that could allow an attacker to execute arbitrary code on a v...
Oct 9, 2024Adobe Animate versions 23.0.7, 24.0.4 and earlier contain an integer overflow vulnerability that could allow arbitrary code execution when a user open...
Oct 9, 2024A stack-based buffer overflow vulnerability in Adobe Animate allows arbitrary code execution when a user opens a malicious file. This affects users of...
Oct 9, 2024Lightroom Desktop has an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents when users open malicious files...
Oct 9, 2024CVE-2024-20787 is an out-of-bounds read vulnerability in Substance3D Painter that could allow an attacker to read sensitive memory contents when a use...
Oct 9, 2024Adobe Dimension versions 4.0.3 and earlier contain a use-after-free vulnerability that could allow an attacker to execute arbitrary code on a victim's...
Oct 9, 2024This CVE describes an improper authentication vulnerability in Adobe ColdFusion that allows attackers to bypass authentication mechanisms and escalate...
Sep 13, 2024This CVE describes an out-of-bounds write vulnerability in Adobe Photoshop that could allow an attacker to execute arbitrary code on a victim's system...
Sep 13, 2024CVE-2024-43756 is a heap-based buffer overflow vulnerability in Adobe Photoshop that could allow arbitrary code execution when a user opens a maliciou...
Sep 13, 2024This CVE describes a Type Confusion vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious PDF ...
Sep 13, 2024Adobe Illustrator versions 28.6, 27.9.5 and earlier contain a NULL pointer dereference vulnerability that allows attackers to crash the application by...
Sep 13, 2024CVE-2024-41869 is a use-after-free vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious PDF f...
Sep 13, 2024CVE-2024-41867 is an out-of-bounds read vulnerability in Adobe After Effects that could allow an attacker to read sensitive memory contents. This coul...
Sep 13, 2024Adobe Illustrator versions 28.6, 27.9.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user o...
Sep 13, 2024CVE-2024-39384 is an out-of-bounds write vulnerability in Adobe Premiere Pro that could allow arbitrary code execution when a user opens a malicious f...
Sep 13, 2024CVE-2024-39381 is an out-of-bounds write vulnerability in Adobe After Effects that could allow arbitrary code execution when a user opens a malicious ...
Sep 13, 2024Adobe Illustrator versions 28.6, 27.9.5 and earlier contain an integer overflow vulnerability that could allow arbitrary code execution when a user op...
Sep 13, 2024Adobe Media Encoder versions 24.5, 23.6.8 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory ...
Sep 13, 2024Adobe Media Encoder versions 24.5, 23.6.8 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory ...
Sep 13, 2024Adobe Media Encoder versions 24.5, 23.6.8 and earlier contain an out-of-bounds write vulnerability that could allow attackers to execute arbitrary cod...
Sep 13, 2024Adobe Audition versions 24.4.1, 23.6.6 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory con...
Sep 11, 2024CVE-2024-45107 is a use-after-free vulnerability in Adobe Acrobat Reader that could allow an attacker to read sensitive memory contents and bypass ASL...
Sep 5, 2024CVE-2024-41879 is an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious...
Aug 26, 2024Adobe Experience Manager versions 6.5.19 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious sc...
Aug 23, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to inject malicious JavaScript into vulnerable form ...
Aug 23, 2024This CVE describes a reflected Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager versions 6.5.20 and earlier. An attacker can craft...
Aug 23, 2024This CVE describes a stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager (AEM) versions 6.5.20 and earlier. It allows attacker...
Aug 23, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager allows attackers to inject malicious JavaScript into vulnerable form ...
Aug 23, 2024Adobe Experience Manager versions 6.5.20 and earlier contain a stored XSS vulnerability where attackers can inject malicious JavaScript into form fiel...
Aug 23, 2024Adobe InDesign has a NULL pointer dereference vulnerability that allows attackers to crash the application by tricking users into opening malicious fi...
Aug 14, 2024CVE-2024-41853 is a heap-based buffer overflow vulnerability in Adobe InDesign that could allow arbitrary code execution when a user opens a malicious...
Aug 14, 2024Adobe Illustrator versions 28.5, 27.9.4, 28.6, 27.9.5 and earlier contain an improper input validation vulnerability that could allow arbitrary code e...
Aug 14, 2024This CVE describes an out-of-bounds read vulnerability in Adobe Acrobat Reader that could allow an attacker to read sensitive memory contents. When ex...
Aug 14, 2024Adobe Bridge versions 13.0.8, 14.1.1 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user op...
Aug 14, 2024This CVE describes an integer overflow vulnerability in Adobe InDesign that could allow arbitrary code execution when a user opens a malicious file. A...
Aug 14, 2024CVE-2024-41831 is a use-after-free vulnerability in Adobe Acrobat Reader that could allow attackers to execute arbitrary code when a user opens a mali...
Aug 14, 2024This CVE describes an out-of-bounds read vulnerability in Adobe Acrobat Reader that could allow an attacker to read sensitive memory contents, potenti...
Aug 14, 2024This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a maliciou...
Aug 14, 2024Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,279+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
