目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

Adobe 厂商漏洞列表 / CVE 中文分析 4289

Adobe 厂商相关 4289 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

Adobe 是全球领先的数字媒体与数字体验解决方案提供商,核心业务涵盖创意软件及文档管理。其产品线历史漏洞频发,累计收录 4289 条 CVE,常见类型包括远程代码执行、跨站脚本及权限绕过。值得关注的是,其 PDF 阅读器及 Acrobat 组件常因解析逻辑缺陷成为攻击重灾区,且多次发生针对企业环境的零日漏洞利用事件,凸显其复杂代码库在安全维护上的长期挑战。

上位製品 Adobe: Adobe Experience Manager Adobe Acrobat and Reader Acrobat Reader Adobe Commerce Illustrator InDesign Desktop ColdFusion Dimension Bridge After Effects Animate Experience Manager Substance3D - Stager Magento Commerce Adobe Framemaker Substance3D - Painter InDesign InCopy Photoshop Media Encoder Substance3D - Modeler Adobe Photoshop CC Substance3D - Designer Adobe Connect Audition FrameMaker Magento Adobe Photoshop Photoshop Desktop Substance3D - Sampler
CVE IDタイトルCVSS深刻度公開日
CVE-2026-34623 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2026-04-14
CVE-2026-34624 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2026-04-14
CVE-2026-27288 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2026-04-14
CVE-2026-27303 Adobe Connect | Deserialization of Untrusted Data (CWE-502) — Adobe ConnectCWE-502 9.6 Critical2026-04-14
CVE-2026-34617 Adobe Connect | Cross-site Scripting (XSS) (CWE-79) — Adobe ConnectCWE-79 8.7 High2026-04-14
CVE-2026-21331 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe ConnectCWE-79 6.1 Medium2026-04-14
CVE-2026-27246 Adobe Connect | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe ConnectCWE-79 9.3 Critical2026-04-14
CVE-2026-34614 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe ConnectCWE-79 6.1 Medium2026-04-14
CVE-2026-27245 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe ConnectCWE-79 9.3 Critical2026-04-14
CVE-2026-34615 Adobe Connect | Deserialization of Untrusted Data (CWE-502) — Adobe ConnectCWE-502 9.3 Critical2026-04-14
CVE-2026-27243 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe ConnectCWE-79 9.3 Critical2026-04-14
CVE-2026-34628 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-04-14
CVE-2026-34629 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-04-14
CVE-2026-34627 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-04-14
CVE-2026-27258 DNG SDK | Out-of-bounds Write (CWE-787) — DNG SDKCWE-787 5.5 Medium2026-04-14
CVE-2026-27284 InDesign Desktop | Out-of-bounds Read (CWE-125) — InDesign DesktopCWE-125 7.8 High2026-04-14
CVE-2026-27285 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 5.5 Medium2026-04-14
CVE-2026-27286 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 5.5 Medium2026-04-14
CVE-2026-27283 InDesign Desktop | Use After Free (CWE-416) — InDesign DesktopCWE-416 7.8 High2026-04-14
CVE-2026-27238 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-04-14
CVE-2026-27291 InDesign Desktop | Out-of-bounds Write (CWE-787) — InDesign DesktopCWE-787 7.8 High2026-04-14
CVE-2026-34622 Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321) — Acrobat ReaderCWE-1321 8.6 High2026-04-14
CVE-2026-34626 Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321) — Acrobat ReaderCWE-1321 6.3 Medium2026-04-14
CVE-2026-34621 Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321) — Acrobat ReaderCWE-1321 8.6 High2026-04-11
CVE-2026-27309 Substance3D - Stager | Use After Free (CWE-416) — Substance3D - StagerCWE-416 7.8 High2026-03-27
CVE-2026-21291 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79 4.8 Medium2026-03-11
CVE-2026-21293 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) — Adobe CommerceCWE-918 5.5 Medium2026-03-11
CVE-2026-21282 Adobe Commerce | Improper Input Validation (CWE-20) — Adobe CommerceCWE-20 5.3 Medium2026-03-11
CVE-2026-21286 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863 5.3 Medium2026-03-11
CVE-2026-21294 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) — Adobe CommerceCWE-918 5.5 Medium2026-03-11

本页汇总了 Adobe 厂商截至目前公开的全部 4289 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。