Adobe Security Vulnerabilities (CVEs)
Track 1,270 security vulnerabilities affecting Adobe products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
Adobe Experience Manager versions 6.5.23.0 and earlier contain an XML injection vulnerability that allows low-privileged attackers to manipulate XML q...
Sep 9, 2025Adobe Experience Manager versions 6.5.23.0 and earlier contain a stored cross-site scripting vulnerability that allows low-privileged attackers to inj...
Sep 9, 2025This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted directories and execute arbitrary code on affecte...
Sep 9, 2025Adobe Experience Manager versions 6.5.23.0 and earlier contain an improper input validation vulnerability that allows low-privileged attackers to bypa...
Sep 9, 2025Adobe Experience Manager versions 6.5.23.0 and earlier have an improper input validation vulnerability that allows low-privileged attackers to bypass ...
Sep 9, 2025Adobe Experience Manager versions 6.5.23.0 and earlier contain an improper input validation vulnerability that allows high-privileged attackers to byp...
Sep 9, 2025CVE-2025-54236 is an improper input validation vulnerability in Adobe Commerce (Magento) that allows unauthenticated attackers to achieve session take...
Sep 9, 2025Adobe Dimension versions 4.1.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents. U...
Aug 12, 2025Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user open...
Aug 12, 2025Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user open...
Aug 12, 2025Adobe InDesign has an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents by tricking users into opening mal...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025This CVE describes an out-of-bounds write vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious file. ...
Aug 12, 2025Adobe InDesign versions 20.4, 19.5.4 and earlier contain a use-after-free vulnerability that could allow arbitrary code execution when a user opens a ...
Aug 12, 2025Adobe InDesign has a use-after-free vulnerability that could allow attackers to execute arbitrary code when a user opens a malicious file. This affect...
Aug 12, 2025CVE-2025-54215 is an out-of-bounds write vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious file. T...
Aug 12, 2025CVE-2025-54217 is a heap-based buffer overflow vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious f...
Aug 12, 2025CVE-2025-54219 is a heap-based buffer overflow vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious f...
Aug 12, 2025Adobe InDesign versions 20.4, 19.5.4 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user opens a...
Aug 12, 2025A heap-based buffer overflow vulnerability in Adobe InDesign allows arbitrary code execution when a user opens a malicious file. This affects users of...
Aug 12, 2025This CVE describes an out-of-bounds read vulnerability in Adobe InDesign that could allow attackers to read sensitive memory contents. Affected users ...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Sampler versions 5.0.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory content...
Aug 12, 2025Adobe InDesign has an out-of-bounds write vulnerability that could allow arbitrary code execution when a user opens a malicious file. This affects use...
Aug 12, 2025Adobe InDesign versions 20.4, 19.5.4 and earlier contain an out-of-bounds write vulnerability that could allow attackers to execute arbitrary code whe...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025CVE-2025-54197 is an out-of-bounds read vulnerability in Substance3D Modeler that could allow an attacker to read sensitive memory contents. This affe...
Aug 12, 2025CVE-2025-54198 is an out-of-bounds read vulnerability in Substance3D Modeler that could allow attackers to read sensitive memory contents when a victi...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025CVE-2025-54201 is an out-of-bounds read vulnerability in Substance3D Modeler that could allow attackers to read sensitive memory contents when a user ...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...
Aug 12, 2025Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user ope...
Aug 12, 2025Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user ope...
Aug 12, 2025Adobe Animate versions 23.0.12, 24.0.9 and earlier contain a use-after-free vulnerability that could allow attackers to execute arbitrary code on a vi...
Aug 12, 2025This CVE describes an out-of-bounds write vulnerability in Adobe Photoshop that could allow arbitrary code execution when a user opens a malicious fil...
Aug 12, 2025CVE-2025-49560 is a heap-based buffer overflow vulnerability in Substance3D Viewer that allows arbitrary code execution when a user opens a malicious ...
Aug 12, 2025Adobe Commerce has an incorrect authorization vulnerability that allows attackers to bypass security measures and gain unauthorized read access to sen...
Aug 12, 2025This CVE describes a Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Adobe Commerce that allows attackers to bypass security featur...
Aug 12, 2025This CVE describes a path traversal vulnerability in Adobe Commerce that allows attackers to bypass security restrictions and modify limited data with...
Aug 12, 2025Adobe Commerce has an improper input validation vulnerability (CWE-20) that allows unauthenticated attackers to cause denial-of-service by sending spe...
Aug 12, 2025A stack-based buffer overflow vulnerability in Adobe Illustrator allows arbitrary code execution when a user opens a malicious file. This affects Illu...
Aug 12, 2025Why Monitor Adobe Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,270+ known vulnerabilities affecting Adobe products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Adobe packages in under 60 seconds. No agents required - completely agentless scanning that works across Adobe deployments.
Free vulnerability database: Access detailed information about every Adobe CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Adobe CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
