Adobe Security Vulnerabilities (CVEs)
Track 1,406 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
CVE-2024-20752 is a use-after-free vulnerability in Adobe Bridge that could allow arbitrary code execution when a user opens a malicious file. This af...
Mar 18, 2024CVE-2024-20756 is an out-of-bounds write vulnerability in Adobe Bridge that could allow arbitrary code execution when a user opens a malicious file. T...
Mar 18, 2024A heap-based buffer overflow vulnerability in Adobe Premiere Pro allows attackers to execute arbitrary code when a user opens a malicious file. This a...
Mar 18, 2024This CVE describes an Improper Access Control vulnerability in Adobe ColdFusion that allows attackers to read arbitrary files from the file system wit...
Mar 18, 2024A use-after-free vulnerability in Adobe Acrobat Reader allows arbitrary code execution when a user opens a malicious PDF file. This affects users runn...
Feb 29, 2024This stored Cross-Site Scripting (XSS) vulnerability in Adobe Commerce allows an authenticated admin attacker to inject malicious JavaScript into admi...
Feb 15, 2024CVE-2024-20750 is an out-of-bounds read vulnerability in Substance3D Designer that could allow arbitrary code execution when a user opens a malicious ...
Feb 15, 2024This CVE describes an authentication bypass vulnerability in Adobe FrameMaker Publishing Server that allows attackers to gain unauthorized access with...
Feb 15, 2024This CVE describes an integer overflow vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious P...
Feb 15, 2024This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a maliciou...
Feb 15, 2024CVE-2024-20728 is an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious...
Feb 15, 2024Substance3D Painter versions 9.1.1 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user open...
Feb 15, 2024CVE-2024-20742 is an out-of-bounds read vulnerability in Substance3D Painter that could allow arbitrary code execution when a user opens a malicious f...
Feb 15, 2024CVE-2024-20740 is an out-of-bounds write vulnerability in Adobe Substance3D Painter that could allow arbitrary code execution when a user opens a mali...
Feb 15, 2024A buffer overflow vulnerability in Substance3D Painter versions 9.1.1 and earlier allows attackers to execute arbitrary code by tricking users into op...
Feb 15, 2024This vulnerability allows attackers to execute arbitrary code on affected Adobe Substance 3D Designer installations by tricking users into opening mal...
Dec 13, 2023Adobe After Effects has an improper input validation vulnerability that allows arbitrary code execution when a user opens a malicious file. This affec...
Dec 13, 2023Adobe Substance 3D Sampler versions 4.2.1 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user op...
Dec 13, 2023Adobe After Effects has an out-of-bounds write vulnerability that allows attackers to execute arbitrary code when a user opens a malicious file. This ...
Dec 13, 2023This CVE describes an out-of-bounds write vulnerability in Adobe Substance 3D Sampler that could allow arbitrary code execution when a user opens a ma...
Dec 13, 2023Adobe Substance 3D Sampler versions 4.2.1 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user op...
Dec 13, 2023Adobe Illustrator versions 28.0 and earlier (and 27.9 and earlier) contain an out-of-bounds read vulnerability when parsing malicious files. This coul...
Dec 13, 2023This vulnerability allows attackers to execute arbitrary code on Adobe ColdFusion servers by sending maliciously crafted data that gets improperly des...
Nov 17, 2023This vulnerability allows attackers to execute arbitrary code on Adobe ColdFusion servers by sending maliciously crafted data that gets improperly des...
Nov 17, 2023This vulnerability allows unauthenticated attackers to bypass security controls and access ColdFusion administration endpoints (CFM/CFC files). Adobe ...
Nov 17, 2023An unauthenticated attacker can exploit this XXE vulnerability in Adobe RoboHelp Server to read sensitive files from the server filesystem. This affec...
Nov 17, 2023CVE-2023-44324 is an improper authentication vulnerability in Adobe FrameMaker Publishing Server that allows unauthenticated attackers to bypass secur...
Nov 17, 2023Adobe RoboHelp Server versions 11.4 and earlier contain an improper input validation vulnerability that allows unauthenticated attackers to access sen...
Nov 17, 2023Adobe After Effects versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds write vulnerability that could allow attackers to exec...
Nov 17, 2023Adobe After Effects versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds write vulnerability that could allow attackers to exec...
Nov 17, 2023Adobe After Effects versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. This ...
Nov 17, 2023Adobe After Effects has an out-of-bounds read vulnerability that could allow arbitrary code execution when a user opens a malicious file. Attackers co...
Nov 17, 2023This heap-based buffer overflow vulnerability in Adobe Premiere Pro allows attackers to execute arbitrary code when a user opens a malicious file. The...
Nov 16, 2023Adobe Premiere Pro versions 24.0 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. An attac...
Nov 16, 2023Adobe InCopy has an out-of-bounds read vulnerability that could allow arbitrary code execution when a user opens a malicious file. Attackers could exp...
Nov 16, 2023Adobe Media Encoder versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. An at...
Nov 16, 2023A heap-based buffer overflow vulnerability in Adobe Media Encoder allows attackers to execute arbitrary code when a user opens a malicious file. This ...
Nov 16, 2023This CVE describes an out-of-bounds write vulnerability in Adobe Photoshop that could allow an attacker to execute arbitrary code on a victim's system...
Nov 16, 2023This CVE describes a Use After Free vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious PDF ...
Nov 16, 2023This CVE describes a Use After Free vulnerability in Adobe Acrobat Reader that could allow an attacker to execute arbitrary code on a victim's system....
Nov 16, 2023Adobe Acrobat Reader has an uninitialized pointer vulnerability that allows arbitrary code execution when a user opens a malicious PDF file. This affe...
Nov 16, 2023Adobe Acrobat Reader versions 23.006.20360 and earlier, and 20.005.30524 and earlier, contain a use-after-free vulnerability that could allow arbitrar...
Nov 16, 2023Adobe Acrobat Reader versions 23.006.20360 and earlier, and 20.005.30524 and earlier, contain an out-of-bounds read vulnerability when parsing malicio...
Nov 16, 2023This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious PDF ...
Nov 16, 2023This SQL injection vulnerability in Adobe Commerce allows authenticated attackers with admin privileges to execute arbitrary code on affected systems....
Oct 13, 2023This CVE-2023-38218 vulnerability in Adobe Commerce allows authenticated attackers to bypass authorization controls, potentially exposing sensitive in...
Oct 13, 2023CVE-2023-38220 is an improper authorization vulnerability in Adobe Commerce (formerly Magento) that allows attackers to bypass security controls and a...
Oct 13, 2023CVE-2023-26370 is an access of uninitialized pointer vulnerability in Adobe Photoshop that could allow arbitrary code execution when a user opens a ma...
Oct 11, 2023This vulnerability allows remote attackers to execute arbitrary code on Saphira Connect systems by exploiting unnecessary privilege execution. It affe...
Sep 15, 2023Saphira Connect versions before 9 have incorrect default permissions that allow local users to escalate privileges. This vulnerability affects all sys...
Sep 15, 2023Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,406+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
