Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4464

Browse all 4464 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

Top products by Adobe: Adobe Experience Manager Adobe Acrobat and Reader Acrobat Reader Adobe Commerce Illustrator InDesign Desktop ColdFusion After Effects Dimension Bridge Animate Experience Manager Substance3D - Stager Magento Commerce Adobe Framemaker Substance3D - Painter InDesign InCopy Photoshop Media Encoder Substance3D - Designer Substance3D - Modeler Adobe Connect Adobe Photoshop CC Audition FrameMaker Substance3D - Sampler Magento Adobe Photoshop Photoshop Desktop
CVE IDTitleCVSSSeverityPublished
CVE-2021-43022 Adobe Premiere Rush PNG File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-43747 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-43021 Adobe Premiere Rush EXR File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-43029 Adobe Premiere Rush M4A File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-40783 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 -2021-12-20
CVE-2021-43028 Adobe Premiere Rush M4A File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-43026 Adobe Premiere Rush MXF File Memory Corruption Remote Code Execution — Premiere RushCWE-788 7.8 High2021-12-20
CVE-2021-44185 Adobe Bridge RGB File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — BridgeCWE-125 5.5 -2021-12-07
CVE-2021-44186 Adobe Bridge SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — BridgeCWE-125 3.3 -2021-12-07
CVE-2021-44187 Adobe Bridge SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — BridgeCWE-125 3.3 -2021-12-07
CVE-2021-43019 Adobe Creative Cloud Incorrect Permission Assignment Privilege Escalation Vulnerability — Creative Cloud (desktop component)CWE-732 7.8 -2021-11-23
CVE-2021-42727 Adobe Bridge Buffer Overflow Arbitrary code execution — BridgeCWE-787 7.8 High2021-11-22
CVE-2021-43016 Adobe InCopy NULL Pointer Dereference Application Denial of Service — InCopyCWE-476 5.5 Medium2021-11-22
CVE-2021-43015 Adobe InCopy GIF File Parsing Memory Corruption Arbitrary Code Execution — InCopyCWE-788 7.8 High2021-11-22
CVE-2021-42738 Adobe Prelude MXF File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 High2021-11-22
CVE-2021-42737 Adobe Prelude WAV File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 High2021-11-22
CVE-2021-42733 Adobe Bridge NULL Pointer Dereference could lead to Application denial-of-service — BridgeCWE-476 5.5 Medium2021-11-22
CVE-2021-40775 Adobe Prelude SVG File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 -2021-11-22
CVE-2021-40774 Adobe Prelude NULL Pointer Dereference Application Denial of Service — PreludeCWE-476 5.5 Medium2021-11-22
CVE-2021-40773 Adobe Prelude NULL Pointer Dereference Application Denial of Service — PreludeCWE-476 5.5 Medium2021-11-22
CVE-2021-40772 Adobe Prelude M4A File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 -2021-11-22
CVE-2021-40771 Adobe Prelude WAV File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 -2021-11-22
CVE-2021-40770 Adobe Prelude M4A File Parsing Memory Corruption Arbitrary Code Execution — PreludeCWE-788 7.8 High2021-11-22
CVE-2021-36003 Adobe Audition MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — AuditionCWE-125 5.5 Medium2021-11-19
CVE-2021-43017 Adobe Creative Cloud DLL Hijacking Local Application Denial of Service — GoCartCWE-379 4.2 Medium2021-11-18
CVE-2021-42525 Adobe Animate SVG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — AnimateCWE-125 5.5 -2021-11-18
CVE-2021-42524 Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — AnimateCWE-787 7.8 -2021-11-18
CVE-2021-42272 Adobe Animate GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — AnimateCWE-787 7.8 -2021-11-18
CVE-2021-42271 Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — AnimateCWE-787 7.8 -2021-11-18
CVE-2021-42270 Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — AnimateCWE-787 7.8 -2021-11-18

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.