Adobe Security Vulnerabilities (CVEs)
Track 1,406 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows remote attackers to execute arbitrary code on Adobe ColdFusion servers without authentication or user interaction. It affect...
Sep 14, 2023This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a maliciou...
Sep 13, 2023CVE-2022-24093 is an improper input validation vulnerability in Adobe Commerce (formerly Magento) that allows authenticated attackers to execute arbit...
Sep 12, 2023Adobe InDesign versions 17.1 and earlier (macOS/Windows) and 16.4.1 and earlier (macOS/Windows) contain an out-of-bounds write vulnerability that coul...
Sep 11, 2023Adobe InDesign versions 17.1 and earlier (macOS/Windows) and 16.4.1 and earlier (macOS/Windows) contain an out-of-bounds write vulnerability. When exp...
Sep 11, 2023Adobe InCopy versions 17.1 and earlier (and 16.4.1 and earlier) contain a use-after-free vulnerability that could allow attackers to execute arbitrary...
Sep 11, 2023This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader that could allow an attacker to execute arbitrary code on a victim's system....
Sep 11, 2023A stack-based buffer overflow vulnerability in Adobe Acrobat Reader allows attackers to execute arbitrary code when a user opens a malicious PDF file....
Sep 11, 2023This CVE describes an out-of-bounds write vulnerability in Adobe Illustrator that could allow arbitrary code execution when a user opens a malicious f...
Sep 7, 2023CVE-2022-30642 is an out-of-bounds write vulnerability in Adobe Illustrator that could allow arbitrary code execution when a user opens a malicious fi...
Sep 7, 2023This CVE describes a use-after-free vulnerability in Adobe Illustrator that could allow an attacker to execute arbitrary code on a victim's system. Th...
Sep 7, 2023This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious PDF fi...
Sep 6, 2023This path traversal vulnerability in Adobe Acrobat Reader DC allows attackers to execute arbitrary code by tricking users into opening malicious PDF f...
Sep 6, 2023Adobe Dimension 3.4.9 contains a use-after-free vulnerability that could allow an attacker to execute arbitrary code on a victim's system when they op...
Aug 9, 2023This CVE describes an OS command injection vulnerability in Adobe Commerce (formerly Magento) that allows authenticated administrators to execute arbi...
Aug 9, 2023CVE-2023-38203 is a critical deserialization vulnerability in Adobe ColdFusion that allows attackers to execute arbitrary code without user interactio...
Jul 20, 2023Adobe InDesign has an out-of-bounds write vulnerability in BMP file parsing that allows arbitrary code execution when a user opens a malicious BMP fil...
Jul 20, 2023This vulnerability allows attackers to bypass security controls in Adobe ColdFusion and access administration endpoints without authentication. It aff...
Jul 12, 2023This vulnerability allows attackers to execute arbitrary code on Adobe ColdFusion servers by exploiting insecure deserialization of untrusted data. It...
Jul 12, 2023This CVE describes an out-of-bounds write vulnerability in Adobe InDesign that could allow an attacker to execute arbitrary code on a victim's system....
Jul 12, 2023This vulnerability allows authenticated admin users in Adobe Commerce to execute arbitrary code through improper template engine neutralization. It af...
Jun 15, 2023Adobe Animate has a use-after-free vulnerability that allows arbitrary code execution when a user opens a malicious file. Attackers can exploit this t...
Jun 15, 2023This CVE describes an incorrect authorization vulnerability in Adobe Commerce that allows attackers to bypass security features and access other users...
Jun 15, 2023This CVE describes a stack-based buffer overflow vulnerability in Adobe Substance 3D Painter that allows arbitrary code execution when a user opens a ...
May 11, 2023Adobe Substance 3D Painter versions 8.3.0 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. This could allow attac...
May 11, 2023Adobe Substance 3D Painter has an out-of-bounds read vulnerability that could allow an attacker to execute arbitrary code on a victim's system. Users ...
May 11, 2023CVE-2023-29278 is an access of uninitialized pointer vulnerability in Adobe Substance 3D Painter that could allow arbitrary code execution when a user...
May 11, 2023Adobe Substance 3D Painter versions 8.3.0 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attacker can exploi...
May 11, 2023Adobe Substance 3D Painter versions 8.3.0 and earlier contain an out-of-bounds write vulnerability that could allow attackers to execute arbitrary cod...
May 11, 2023Adobe Substance 3D Designer versions 12.4.0 and earlier contain an out-of-bounds write vulnerability that allows attackers to execute arbitrary code w...
Apr 13, 2023Adobe Substance 3D Designer versions 12.4.0 and earlier contain a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary ...
Apr 13, 2023Adobe Substance 3D Designer versions 12.4.0 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attacker can expl...
Apr 13, 2023Adobe Substance 3D Designer versions 12.4.0 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attacker could ex...
Apr 13, 2023CVE-2023-26392 is a use-after-free vulnerability in Adobe Substance 3D Stager that allows arbitrary code execution when a user opens a malicious file....
Apr 12, 2023Adobe Substance 3D Stager versions 2.0.1 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrar...
Apr 12, 2023Adobe Substance 3D Stager versions 2.0.1 and earlier contain an improper input validation vulnerability that allows arbitrary code execution when a us...
Apr 12, 2023Adobe Substance 3D Stager versions 2.0.1 and earlier contain a stack-based buffer overflow vulnerability that allows arbitrary code execution when a u...
Apr 12, 2023CVE-2023-26383 is a stack-based buffer overflow vulnerability in Adobe Substance 3D Stager that allows arbitrary code execution when a user opens a ma...
Apr 12, 2023CVE-2023-21582 is an out-of-bounds write vulnerability in Adobe Digital Editions that could allow arbitrary code execution when a user opens a malicio...
Apr 12, 2023Adobe Acrobat Reader versions 23.001.20093 and earlier, and 20.005.30441 and earlier, contain an out-of-bounds read vulnerability when parsing malicio...
Apr 12, 2023Adobe Acrobat Reader versions 23.001.20093 and earlier, and 20.005.30441 and earlier, contain a use-after-free vulnerability that could allow an attac...
Apr 12, 2023This CVE describes an integer underflow/wraparound vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a...
Apr 12, 2023This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader that could allow attackers to execute arbitrary code when a user opens a mal...
Apr 12, 2023CVE-2023-26417 is a use-after-free vulnerability in Adobe Acrobat Reader that allows arbitrary code execution when a user opens a malicious PDF file. ...
Apr 12, 2023This CVE describes an improper input validation vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a ma...
Apr 12, 2023This vulnerability in Adobe Acrobat Reader allows attackers to execute arbitrary code on a victim's system when they open a malicious PDF file. It aff...
Apr 12, 2023This vulnerability in Adobe Acrobat Reader allows attackers to create temporary files with incorrect permissions, potentially leading to privilege esc...
Apr 12, 2023This CVE describes a critical Java insecure deserialization vulnerability in Adobe LiveCycle ES4 that allows unauthenticated remote attackers to execu...
Apr 6, 2023CVE-2023-26350 is an out-of-bounds read vulnerability in Adobe Dimension that could allow an attacker to read sensitive memory information. This affec...
Mar 28, 2023Adobe Dimension versions 3.4.7 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents. T...
Mar 28, 2023Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,406+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
