Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4340

Browse all 4340 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

Top products by Adobe: Adobe Experience Manager Adobe Acrobat and Reader Acrobat Reader Adobe Commerce Illustrator InDesign Desktop ColdFusion After Effects Dimension Bridge Animate Experience Manager Substance3D - Stager Magento Commerce Adobe Framemaker Substance3D - Painter InDesign InCopy Photoshop Media Encoder Substance3D - Designer Substance3D - Modeler Adobe Connect Adobe Photoshop CC Audition FrameMaker Magento Adobe Photoshop Photoshop Desktop Substance3D - Sampler
CVE IDTitleCVSSSeverityPublished
CVE-2024-20718 [Spain] CSRF to delete Requisition Lists at Adobe Commerce — Adobe CommerceCWE-352 4.3 Medium2024-02-15
CVE-2024-20720 Command injection in data collector backup due to insufficient patching of CVE-2023-38208 — Adobe CommerceCWE-78 9.1 Critical2024-02-15
CVE-2024-20750 Adobe Substance 3D Designer PICT Parsing Out-Of-Bounds Read Vulnerability — Substance3D - DesignerCWE-125 7.8 High2024-02-15
CVE-2024-20739 ZDI-CAN-22647: Adobe Audition AVI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — AuditionCWE-122 7.8 High2024-02-15
CVE-2024-20738 Adobe FrameMaker Publishing Server Authentication Bypass Vulnerability | CVE-2023-44324 bypass — Adobe Framemaker Publishing ServerCWE-287 9.8 Critical2024-02-15
CVE-2024-20726 [TianfuCup] JP2K Image Parsing Out-Of-Bounds Write — Acrobat ReaderCWE-787 7.8 High2024-02-15
CVE-2024-20730 TALOS-2023-1906 - Adobe Acrobat Reader Font CPAL integer overflow vulnerability — Acrobat ReaderCWE-190 7.8 High2024-02-15
CVE-2024-20731 TALOS-2023-1901 - Adobe Acrobat Reader FileAttachment PDAnnot destroy use-after-free vulnerability — Acrobat ReaderCWE-416 7.8 High2024-02-15
CVE-2024-20727 [TianfuCup] out-of-bounds access vulnerability when parsing jpeg2000 — Acrobat ReaderCWE-787 7.8 High2024-02-15
CVE-2024-20747 TALOS-2023-1908 - Adobe Acrobat Reader Font CharStrings INDEX out-of-bounds read vulnerability — Acrobat ReaderCWE-125 5.5 Medium2024-02-15
CVE-2024-20733 [ZS-VR-23-360] Adobe Acrobat Reader Parsing OTF font Denial-of-Service Vulnerability — Acrobat ReaderCWE-20 5.5 Medium2024-02-15
CVE-2024-20748 TALOS-2023-1909 - Adobe Acrobat Reader Font avar SegmentMaps out-of-bounds read vulnerability — Acrobat ReaderCWE-125 5.5 Medium2024-02-15
CVE-2024-20734 ZDI-CAN-22516: Adobe Acrobat Pro DC AcroForm Use-After-Free Information Disclosure Vulnerability — Acrobat ReaderCWE-416 5.5 Medium2024-02-15
CVE-2024-20736 ZDI-CAN-22822: Adobe Acrobat Pro DC AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability — Acrobat ReaderCWE-125 5.5 Medium2024-02-15
CVE-2024-20728 ZDI-CAN-22727: Adobe Acrobat Pro DC Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability — Acrobat ReaderCWE-787 7.8 High2024-02-15
CVE-2024-20749 TALOS-2023-1910 - Adobe Acrobat Reader Font CharStrings CharStringsOffset out-of-bounds read vulnerability — Acrobat ReaderCWE-125 5.5 Medium2024-02-15
CVE-2024-20729 TALOS-2023-1890 - Adobe Acrobat Reader Annot3D object zoom event use-after-free vulnerability — Acrobat ReaderCWE-416 7.8 High2024-02-15
CVE-2024-20735 TALOS-2023-1905 - Adobe Acrobat Reader Font CPAL numColorRecords out-of-bounds read vulnerability — Acrobat ReaderCWE-125 5.5 Medium2024-02-15
CVE-2024-20744 Adobe Substance 3D Paint PICT Parsing Access Violation Write Vulnerability — Substance3D - PainterCWE-787 7.8 High2024-02-15
CVE-2024-20724 Adobe Substance 3D Painter v9.0.1Build2822 OOBR Vulnerability II — Substance3D - PainterCWE-125 5.5 Medium2024-02-15
CVE-2024-20743 Adobe Substance 3D Paint PSD Parsing Out-Of-Bounds Write Vulnerability — Substance3D - PainterCWE-787 7.8 High2024-02-15
CVE-2024-20722 Adobe Substance 3D Painter v9.0.1Build2822 OOBR Vulnerability III — Substance3D - PainterCWE-125 5.5 Medium2024-02-15
CVE-2024-20742 Adobe Substance 3D Paint RAS File Parsing Out-Of-Bounds Read Vulnerability — Substance3D - PainterCWE-125 7.8 High2024-02-15
CVE-2024-20740 Adobe Substance 3D Paint PSD Parsing Out-Of-Bounds Write Vulnerability — Substance3D - PainterCWE-787 7.8 High2024-02-15
CVE-2024-20741 Adobe Substance 3D Paint ICO Parsing Access Violation Write Vulnerability — Substance3D - PainterCWE-123 7.8 High2024-02-15
CVE-2024-20723 Adobe Substance 3D Painter v9.0.1Build2822 Buffer Overflow Vulnerability — Substance3D - PainterCWE-120 7.8 High2024-02-15
CVE-2024-20725 Adobe Substance 3D Painter v9.0.1Build2822 OOBR Vulnerability I — Substance3D - PainterCWE-125 5.5 Medium2024-02-15
CVE-2023-51464 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2024-01-18
CVE-2023-51463 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2024-01-18
CVE-2024-20709 New Edge T5 MSRC Case [DCMSFT-1081] — Acrobat for EdgeCWE-20 5.5 Medium2024-01-15

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.