Adobe — Vulnerabilities & Security Advisories 4340

Browse all 4340 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-48511	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48466	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48572	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48594	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48514	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48603	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48504	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48484	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48487	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48593	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48560	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48509	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48502	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48506	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48494	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48582	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48492	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48606	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48615	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48599	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	4.3	Medium	2023-12-15
CVE-2023-48523	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-48485	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-12-15
CVE-2023-38215	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-09-13
CVE-2023-38214	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-09-13
CVE-2023-29322	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-06-15
CVE-2023-29304	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-06-15
CVE-2023-29302	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-06-15
CVE-2023-21615	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-03-22
CVE-2023-21616	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2023-03-22
CVE-2020-9651	Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager	6.1	-	2020-06-12

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Adobe — Vulnerabilities & Security Advisories 4340