Adobe Security Vulnerabilities (CVEs)
Track 1,268 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
Adobe Illustrator on iPad versions 3.0.9 and earlier contain an out-of-bounds write vulnerability that could allow attackers to execute arbitrary code...
Nov 11, 2025Adobe Illustrator on iPad versions 3.0.9 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrar...
Nov 11, 2025This CVE describes an out-of-bounds write vulnerability in Adobe Illustrator that could allow arbitrary code execution when a user opens a malicious f...
Nov 11, 2025Adobe Illustrator on iPad versions 3.0.9 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ...
Nov 11, 2025A heap-based buffer overflow vulnerability in Photoshop Desktop allows attackers to execute arbitrary code when a user opens a malicious file. This af...
Nov 11, 2025A heap-based buffer overflow vulnerability in Adobe Illustrator allows attackers to execute arbitrary code when a user opens a malicious file. This af...
Nov 11, 2025Adobe InDesign versions 20.5, 19.5.5 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code when a us...
Nov 11, 2025A heap-based buffer overflow vulnerability in Adobe InCopy allows arbitrary code execution when a user opens a malicious file. This affects users of I...
Nov 11, 2025Adobe InCopy versions 20.5, 19.5.5 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code when a user...
Nov 11, 2025A use-after-free vulnerability in Adobe InCopy allows arbitrary code execution when a user opens a malicious file. This affects users running vulnerab...
Nov 11, 2025A heap-based buffer overflow vulnerability in Adobe InDesign allows attackers to execute arbitrary code when a user opens a malicious file. This affec...
Nov 11, 2025A heap-based buffer overflow vulnerability in Adobe InDesign allows attackers to execute arbitrary code when a user opens a malicious file. This affec...
Nov 11, 2025Adobe InDesign versions 20.5, 19.5.5 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a ...
Nov 11, 2025A Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Adobe Creative Cloud Desktop versions 6.7.0.278 and earlier allows low-privileged...
Oct 15, 2025CVE-2025-54268 is a heap-based buffer overflow vulnerability in Adobe Bridge that could allow arbitrary code execution when a user opens a malicious f...
Oct 15, 2025Adobe Animate versions 23.0.13, 24.0.10 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive informati...
Oct 15, 2025Adobe Animate versions 23.0.13, 24.0.10 and earlier contain a NULL pointer dereference vulnerability that could allow memory exposure when processing ...
Oct 15, 2025Adobe Animate versions 23.0.13, 24.0.10 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code on a v...
Oct 15, 2025Adobe Experience Manager versions 11.6 and earlier contain a stored XSS vulnerability where low-privileged attackers can inject malicious scripts into...
Oct 14, 2025Adobe Experience Manager versions 11.6 and earlier contain a stored XSS vulnerability that allows low-privileged attackers to inject malicious JavaScr...
Oct 14, 2025Adobe Experience Manager versions 11.6 and earlier contain a stored XSS vulnerability that allows low-privileged attackers to inject malicious JavaScr...
Oct 14, 2025Adobe Connect versions 12.9 and earlier contain a DOM-based XSS vulnerability that allows high-privileged attackers to execute malicious scripts in vi...
Oct 14, 2025Adobe Connect versions 12.9 and earlier contain a DOM-based Cross-Site Scripting vulnerability that allows attackers to execute malicious JavaScript i...
Oct 14, 2025Adobe Commerce (Magento) versions 2.4.9-alpha2 through 2.4.4-p15 and earlier contain an incorrect authorization vulnerability (CWE-863) that allows at...
Oct 14, 2025A stored cross-site scripting (XSS) vulnerability in Adobe Commerce allows high-privileged attackers to inject malicious JavaScript into vulnerable fo...
Oct 14, 2025This CVE describes an incorrect authorization vulnerability in Adobe Commerce that allows low-privileged attackers to bypass security controls and gai...
Oct 14, 2025Adobe Commerce has an incorrect authorization vulnerability that allows low-privileged attackers to bypass security controls and maintain unauthorized...
Oct 14, 2025CVE-2025-61805 is an out-of-bounds read vulnerability in Substance3D Stager that could allow arbitrary code execution when a user opens a malicious fi...
Oct 14, 2025CVE-2025-61807 is an integer overflow vulnerability in Substance3D Stager that allows arbitrary code execution when a user opens a malicious file. Thi...
Oct 14, 2025CVE-2025-61800 is an integer overflow vulnerability in Adobe Dimension versions 4.1.4 and earlier that allows arbitrary code execution when a user ope...
Oct 14, 2025CVE-2025-61802 is a use-after-free vulnerability in Substance3D Stager that could allow arbitrary code execution when a user opens a malicious file. T...
Oct 14, 2025CVE-2025-61803 is an integer overflow vulnerability in Substance3D Stager that allows arbitrary code execution when a user opens a malicious file. Thi...
Oct 14, 2025Adobe Dimension versions 4.1.4 and earlier contain an out-of-bounds read vulnerability when processing malicious files. An attacker could exploit this...
Oct 14, 2025This CVE describes an out-of-bounds write vulnerability in Adobe Illustrator that could allow arbitrary code execution when a user opens a malicious f...
Oct 14, 2025Adobe Framemaker versions 2020.9, 2022.7 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code when ...
Oct 14, 2025CVE-2025-54275 is an out-of-bounds write vulnerability in Substance3D Viewer that allows attackers to cause denial-of-service by crashing the applicat...
Oct 14, 2025Substance3D Viewer versions 0.25.2 and earlier contain an out-of-bounds write vulnerability that could allow attackers to execute arbitrary code on a ...
Oct 14, 2025CVE-2025-54273 is an out-of-bounds write vulnerability in Substance3D Viewer that allows arbitrary code execution when a user opens a malicious file. ...
Oct 14, 2025Substance3D Stager versions 3.1.3 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. This could allow an attacker t...
Sep 16, 2025Substance3D Stager versions 3.1.3 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure when processing malicious f...
Sep 16, 2025CVE-2025-54258 is a use-after-free vulnerability in Substance3D Modeler that could allow arbitrary code execution when a user opens a malicious file. ...
Sep 9, 2025Substance3D Modeler versions 1.22.2 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. This could allow an attacker...
Sep 9, 2025CVE-2025-54240 is an out-of-bounds read vulnerability in Adobe After Effects that could expose memory contents and potentially disclose sensitive info...
Sep 9, 2025Adobe After Effects versions 25.3, 24.6.7 and earlier contain an out-of-bounds read vulnerability that could expose memory contents, potentially leaki...
Sep 9, 2025CVE-2025-54243 is an out-of-bounds write vulnerability in Substance3D Viewer that could allow arbitrary code execution when a user opens a malicious f...
Sep 9, 2025Substance3D Viewer versions 0.25.1 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user open...
Sep 9, 2025Adobe After Effects versions 25.3, 24.6.7 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure and disclosure of s...
Sep 9, 2025This CVE describes a violation of secure design principles in Adobe Acrobat Reader that allows security feature bypass impacting integrity. Attackers ...
Sep 9, 2025A use-after-free vulnerability in Adobe Acrobat Reader allows arbitrary code execution when a user opens a malicious PDF file. This affects users runn...
Sep 9, 2025CVE-2025-54242 is a use-after-free vulnerability in Adobe Premiere Pro that could allow arbitrary code execution when a user opens a malicious file. T...
Sep 9, 2025Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,268+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
