Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4340

Browse all 4340 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

Top products by Adobe: Adobe Experience Manager Adobe Acrobat and Reader Acrobat Reader Adobe Commerce Illustrator InDesign Desktop ColdFusion After Effects Dimension Bridge Animate Experience Manager Substance3D - Stager Magento Commerce Adobe Framemaker Substance3D - Painter InDesign InCopy Photoshop Media Encoder Substance3D - Designer Substance3D - Modeler Adobe Connect Adobe Photoshop CC Audition FrameMaker Magento Adobe Photoshop Photoshop Desktop Substance3D - Sampler
CVE IDTitleCVSSSeverityPublished
CVE-2023-26405 ZDI-CAN-20712: Object Prototype pollution which leads to API Restrictions Bypass — Acrobat ReaderCWE-20 7.8 High2023-04-12
CVE-2023-26406 ZDI-CAN-20712: Net.HTTP.request URL restriction bypass — Acrobat ReaderCWE-284 7.8 High2023-04-12
CVE-2023-26407 ZDI-CAN-20712: Net.HTTP.request Arbitrary Command Execution — Acrobat ReaderCWE-20 7.8 High2023-04-12
CVE-2023-26408 ZDI-CAN-20712: AnnotsString Object prototype pollution Restrictions Bypass Vulnerability — Acrobat ReaderCWE-284 7.8 High2023-04-12
CVE-2023-26417 ZDI-CAN-20583: Adobe Acrobat Reader DC Popup Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26418 ZDI-CAN-20311: Adobe Acrobat Reader DC AcroForm exportAsFDFStr Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26419 ZDI-CAN-20274: Adobe Acrobat Reader DC AcroForm removeField Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26420 ZDI-CAN-20227: Adobe Acrobat Reader DC AcroForm addField Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26421 ZDI-CAN-19832: Adobe Acrobat Reader DC Doc Object Integer Underflow Remote Code Execution Vulnerability — Acrobat ReaderCWE-191 7.8 High2023-04-12
CVE-2023-26422 ZDI-CAN-20176: Adobe Acrobat Reader DC AcroForm deleteItemAt Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26423 ZDI-CAN-20160: Adobe Acrobat Reader DC AcroForm insertItemAt Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26424 ZDI-CAN-19833: Adobe Acrobat Reader DC PDF Parsing Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2023-04-12
CVE-2023-26425 ZDI-CAN-19854: Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability — Acrobat ReaderCWE-125 7.8 High2023-04-12
CVE-2023-25879 ZDI-CAN-19389: Adobe Dimension OBJ File Improper Input Validation Remote Code Execution — DimensionCWE-20 7.8 High2023-03-28
CVE-2023-25880 ZDI-CAN-19412: Adobe Dimension GLTF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — DimensionCWE-787 7.8 High2023-03-28
CVE-2023-25881 ZDI-CAN-19390: Adobe Dimension OBJ File Improper Input Validation Remote Code Execution — DimensionCWE-20 7.8 High2023-03-28
CVE-2023-25882 ZDI-CAN-19385: Adobe Dimension OBJ File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — DimensionCWE-122 7.8 High2023-03-28
CVE-2023-25883 ZDI-CAN-19386: Adobe Dimension FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — DimensionCWE-122 7.8 High2023-03-28
CVE-2023-25884 ZDI-CAN-19411: Adobe Dimension GLTF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25885 ZDI-CAN-19480: Adobe Dimension USD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — DimensionCWE-122 7.8 High2023-03-28
CVE-2023-25886 ZDI-CAN-19452: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25887 ZDI-CAN-19450: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25888 ZDI-CAN-19451: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25889 ZDI-CAN-19466: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25890 ZDI-CAN-19493: Adobe Dimension USD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — DimensionCWE-122 7.8 High2023-03-28
CVE-2023-25891 ZDI-CAN-19542: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25892 ZDI-CAN-19523: Adobe Dimension USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — DimensionCWE-125 7.8 High2023-03-28
CVE-2023-25893 ZDI-CAN-19539: Adobe Dimension USD File Parsing Use-After-Free Remote Code Execution Vulnerability — DimensionCWE-416 7.8 High2023-03-28
CVE-2023-25894 ZDI-CAN-19543: Adobe Dimension USD File Parsing Use-After-Free Remote Code Execution Vulnerability — DimensionCWE-416 7.8 High2023-03-28
CVE-2023-25895 ZDI-CAN-19540: Adobe Dimension USD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — DimensionCWE-122 7.8 High2023-03-28

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.