Adobe — Vulnerabilities & Security Advisories 4340

Browse all 4340 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-38420	Adobe ColdFusion Use of Hard-coded Credentials Application denial-of-service — ColdFusionCWE-798	7.5	High	2022-10-14
CVE-2022-35710	Adobe ColdFusion ODBC Server Stack-based Buffer Overflow Remote Code Execution Vulnerability — ColdFusionCWE-121	9.8	Critical	2022-10-14
CVE-2022-38418	Adobe ColdFusion Application Server Directory Traversal Remote Code Execution Vulnerability — ColdFusionCWE-22	9.8	Critical	2022-10-14
CVE-2022-28818	ColdFusion Reflected Cross-Site Scripting could lead to Arbitrary Code Execution — ColdFusionCWE-79	6.1	-	2022-05-12
CVE-2020-10145	Adobe ColdFusion 安全漏洞 — ColdFusionCWE-284	7.8	High	2021-05-27
CVE-2021-21087	ColdFusion Improper neutralization of web input during page generation could lead to arbitrary JavaScript execution in the browser — ColdFusionCWE-79	6.1	-	2021-04-15
CVE-2020-3796	Adobe ColdFusion 信息泄露漏洞 — ColdFusion	7.5	-	2020-06-26
CVE-2020-3768	Adobe ColdFusion 代码问题漏洞 — ColdFusion	7.8	-	2020-06-26
CVE-2020-3767	Adobe ColdFusion 输入验证错误漏洞 — ColdFusion	6.5	-	2020-06-26
CVE-2020-3794	Adobe ColdFusion 输入验证错误漏洞 — ColdFusion	9.8	-	2020-03-25
CVE-2020-3761	Adobe ColdFusion 信息泄露漏洞 — ColdFusion	7.5	-	2020-03-25
CVE-2019-8256	Adobe ColdFusion 安全漏洞 — ColdFusion	9.8	-	2019-12-19
CVE-2019-7840	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2019-06-12
CVE-2019-7839	Adobe ColdFusion 命令注入漏洞 — ColdFusion	9.8	-	2019-06-12
CVE-2019-7838	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2019-06-12
CVE-2019-7092	Adobe ColdFusion 跨站脚本漏洞 — ColdFusion	6.1	-	2019-05-24
CVE-2019-7091	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2019-05-24
CVE-2019-7816	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2019-05-24
CVE-2018-15957	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2018-09-25
CVE-2018-15958	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2018-09-25
CVE-2018-15959	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2018-09-25
CVE-2018-15960	Adobe ColdFusion 输入验证错误漏洞 — ColdFusion	7.5	-	2018-09-25
CVE-2018-15961	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2018-09-25
CVE-2018-15962	Adobe ColdFusion 信息泄露漏洞 — ColdFusion	5.3	-	2018-09-25
CVE-2018-15963	Adobe ColdFusion 安全漏洞 — ColdFusion	5.3	-	2018-09-25
CVE-2018-15964	Adobe ColdFusion 信息泄露漏洞 — ColdFusion	7.5	-	2018-09-25
CVE-2018-15965	Adobe ColdFusion 代码问题漏洞 — ColdFusion	9.8	-	2018-09-25

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Adobe — Vulnerabilities & Security Advisories 4340