Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Adobe — Vulnerabilities & Security Advisories 4485

Browse all 4485 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

CVE IDTitleCVSSSeverityPublished
CVE-2026-47911 Acrobat Reader | Out-of-bounds Write (CWE-787) — Acrobat ReaderCWE-787 7.8 High2026-06-09
CVE-2026-47909 Dreamweaver Desktop | Improper Input Validation (CWE-20) — Dreamweaver DesktopCWE-20 6.3 Medium2026-06-09
CVE-2026-47910 Dreamweaver Desktop | Incorrect Authorization (CWE-863) — Dreamweaver DesktopCWE-863 6.3 Medium2026-06-09
CVE-2026-47907 Dreamweaver Desktop | Improper Access Control (CWE-284) — Dreamweaver DesktopCWE-284 8.6 High2026-06-09
CVE-2026-47906 Dreamweaver Desktop | Dependency on Vulnerable Third-Party Component (CWE-1395) — Dreamweaver DesktopCWE-1395 8.6 High2026-06-09
CVE-2026-47908 Dreamweaver Desktop | Access of Uninitialized Pointer (CWE-824) — Dreamweaver DesktopCWE-824 7.8 High2026-06-09
CVE-2026-48306 Substance3D - Sampler | Out-of-bounds Write (CWE-787) — Substance3D - SamplerCWE-787 7.8 High2026-06-09
CVE-2026-34710 Substance3D - Sampler | Out-of-bounds Write (CWE-787) — Substance3D - SamplerCWE-787 7.8 High2026-06-09
CVE-2026-48305 Substance3D - Sampler | Out-of-bounds Write (CWE-787) — Substance3D - SamplerCWE-787 7.8 High2026-06-09
CVE-2026-34709 Substance3D - Sampler | Out-of-bounds Write (CWE-787) — Substance3D - SamplerCWE-787 7.8 High2026-06-09
CVE-2026-34707 InCopy | Heap-based Buffer Overflow (CWE-122) — InCopyCWE-122 7.8 High2026-06-09
CVE-2026-34706 InCopy | Out-of-bounds Write (CWE-787) — InCopyCWE-787 7.8 High2026-06-09
CVE-2026-34708 InCopy | Stack-based Buffer Overflow (CWE-121) — InCopyCWE-121 7.8 High2026-06-09
CVE-2026-34701 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-06-09
CVE-2026-34695 InDesign Desktop | Stack-based Buffer Overflow (CWE-121) — InDesign DesktopCWE-121 7.8 High2026-06-09
CVE-2026-34704 InDesign Desktop | NULL Pointer Dereference (CWE-476) — InDesign DesktopCWE-476 5.5 Medium2026-06-09
CVE-2026-34700 InDesign Desktop | Out-of-bounds Write (CWE-787) — InDesign DesktopCWE-787 7.8 High2026-06-09
CVE-2026-34703 InDesign Desktop | NULL Pointer Dereference (CWE-476) — InDesign DesktopCWE-476 5.5 Medium2026-06-09
CVE-2026-34696 InDesign Desktop | Use After Free (CWE-416) — InDesign DesktopCWE-416 7.8 High2026-06-09
CVE-2026-34698 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-06-09
CVE-2026-34699 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2026-06-09
CVE-2026-34705 InDesign Desktop | Out-of-bounds Read (CWE-125) — InDesign DesktopCWE-125 5.5 Medium2026-06-09
CVE-2026-48293 InDesign Desktop | Out-of-bounds Write (CWE-787) — InDesign DesktopCWE-787 7.8 High2026-06-09
CVE-2026-34697 InDesign Desktop | Stack-based Buffer Overflow (CWE-121) — InDesign DesktopCWE-121 7.8 High2026-06-09
CVE-2026-34702 InDesign Desktop | Stack-based Buffer Overflow (CWE-121) — InDesign DesktopCWE-121 7.8 High2026-06-09
CVE-2026-34693 Adobe Experience Manager Forms JEE | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience Manager Forms JEECWE-79 8.0 High2026-06-09
CVE-2026-34694 Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience Manager Forms JEECWE-79 4.8 Medium2026-06-09
CVE-2026-34691 Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience Manager Forms JEECWE-79 9.3 Critical2026-06-09
CVE-2026-47980 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2026-06-09
CVE-2026-47945 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2026-06-09

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.