Adobe Security Vulnerabilities (CVEs)

Adobe Animate versions 21.0.6 and earlier contain a heap-based buffer overflow vulnerability that allows arbitrary code execution when a user opens a ...

Adobe Animate versions 21.0.6 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user opens a malici...

This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious PDF fi...

CVE-2021-28610 is a heap-based buffer overflow vulnerability in Adobe After Effects that allows arbitrary code execution when a user opens a malicious...

Adobe After Effects versions 18.2 and earlier contain a memory corruption vulnerability (CWE-787) that allows arbitrary code execution when a user ope...

Adobe After Effects versions 18.2 and earlier contain a heap-based buffer overflow vulnerability when parsing malicious files. An attacker can exploit...

Adobe After Effects versions 18.2 and earlier contain a stack-based buffer overflow vulnerability when parsing malicious files. An attacker can exploi...

CVE-2021-28608 is a heap-based buffer overflow vulnerability in Adobe After Effects that allows arbitrary code execution when a malicious file is open...

This vulnerability in Adobe Acrobat Reader DC allows an attacker to read memory outside intended boundaries, potentially leading to arbitrary code exe...

CVE-2021-28551 is an out-of-bounds read vulnerability in Adobe Acrobat Reader DC that could allow arbitrary code execution when a user opens a malicio...

CVE-2021-36015 is a memory corruption vulnerability in Adobe Media Encoder that allows arbitrary code execution when parsing malicious files. Attacker...

CVE-2021-35989 is an out-of-bounds write vulnerability in Adobe Bridge that allows arbitrary code execution when a user opens a malicious file. Attack...

Adobe Premiere Pro versions 15.2 and earlier contain a memory corruption vulnerability when parsing malicious files. An attacker can achieve arbitrary...

Adobe Character Animator versions 4.2 and earlier contain a memory corruption vulnerability when parsing malicious files. An attacker can achieve arbi...

CVE-2021-36005 is a stack overflow vulnerability in Adobe Photoshop that allows arbitrary code execution when a user opens a malicious PSD file. Affec...

CVE-2021-36009 is a memory corruption vulnerability in Adobe Illustrator that allows arbitrary code execution when a user opens a malicious file. Atta...

CVE-2021-36011 is a command injection vulnerability in Adobe Illustrator that allows arbitrary code execution when chained with a JavaScript debugging...

This vulnerability allows authenticated attackers to execute arbitrary code on systems running vulnerable versions of Adobe Acrobat Reader DC by trick...

This vulnerability allows an attacker to execute arbitrary code on a victim's system by placing a malicious DLL in the C:/ folder and tricking the use...

This heap-based buffer overflow vulnerability in Adobe Acrobat Reader DC allows attackers to execute arbitrary code on affected systems. An unauthenti...

This CVE describes a use-after-free vulnerability in Adobe Acrobat Reader DC that allows authenticated attackers to execute arbitrary code when a vict...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious ...

CVE-2021-35981 is a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious PDF fil...

CVE-2021-28591 is an out-of-bounds write vulnerability in Adobe Illustrator that allows arbitrary code execution when a malicious file is opened. Atta...

CVE-2021-28595 is an uncontrolled search path vulnerability in Adobe Dimension that allows arbitrary code execution when a user opens a malicious file...

CVE-2021-36004 is an out-of-bounds write vulnerability in Adobe InDesign's CoolType library that allows remote code execution when a user opens a mali...

This vulnerability allows authenticated attackers to perform path traversal attacks via crafted HTTP POST requests in Adobe RoboHelp Server. Successfu...

CVE-2021-28586 is an out-of-bounds write vulnerability in Adobe After Effects that could allow arbitrary code execution when a user opens a malicious ...

CVE-2021-28562 is a use-after-free vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when processing malicious PDF files w...

CVE-2021-28570 is an uncontrolled search path vulnerability in Adobe After Effects that allows attackers to plant malicious binaries in specific locat...

CVE-2021-21090 is a path traversal vulnerability in Adobe InCopy that allows remote code execution when a user opens a malicious file. Attackers can e...

Adobe InDesign versions 16.0 and earlier contain an out-of-bounds write vulnerability when parsing malicious files. An attacker can achieve remote cod...

CVE-2021-21102 is a path traversal vulnerability in Adobe Illustrator that allows arbitrary code execution when a malicious file is opened. Attackers ...

This vulnerability allows unauthenticated attackers to trigger a denial-of-service condition in Adobe Experience Manager (AEM) by exploiting improper ...

This vulnerability in Adobe ColdFusion installer allows unprivileged users to create files in the default installation directory due to insecure ACL s...

This vulnerability in Adobe Genuine Service allows attackers to exploit improper access control when handling symbolic links, enabling privilege escal...

This CVE describes a buffer overflow vulnerability in Adobe Photoshop that allows arbitrary code execution when parsing malicious JSX files. Attackers...

This vulnerability allows arbitrary code execution via memory corruption when Adobe Bridge parses a malicious file. Attackers can exploit this by tric...

CVE-2021-21094 is an out-of-bounds write vulnerability in Adobe Bridge that allows arbitrary code execution when parsing malicious files. Attackers ca...

Adobe Digital Editions versions 4.5.11.187245 and earlier contain a privilege escalation vulnerability during installation that allows an unauthentica...

This vulnerability allows attackers to tamper with certified PDF documents without invalidating their certification. Attackers can manipulate data in ...

CVE-2021-21072 is an out-of-bounds read vulnerability in Adobe Animate that allows an attacker to read sensitive memory contents. Users who open malic...

Adobe Animate versions 21.0.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive information from ...

Adobe Animate versions 21.0.3 and earlier contain an out-of-bounds read vulnerability that could allow an attacker to read sensitive memory contents. ...

This memory corruption vulnerability in Adobe Photoshop allows attackers to execute arbitrary code by tricking users into opening malicious files. It ...

CVE-2021-21056 is an out-of-bounds read vulnerability in Adobe Framemaker that allows arbitrary code execution when a user opens a malicious file. Att...

This vulnerability allows a local attacker to escalate privileges on systems running vulnerable versions of Adobe Creative Cloud Desktop Application. ...

CVE-2021-21065 is an out-of-bounds write vulnerability in Adobe Bridge that allows arbitrary code execution when a user opens a malicious TTF file. It...