Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4340

Browse all 4340 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

Top products by Adobe: Adobe Experience Manager Adobe Acrobat and Reader Acrobat Reader Adobe Commerce Illustrator InDesign Desktop ColdFusion After Effects Dimension Bridge Animate Experience Manager Substance3D - Stager Magento Commerce Adobe Framemaker Substance3D - Painter InDesign InCopy Photoshop Media Encoder Substance3D - Designer Substance3D - Modeler Adobe Connect Adobe Photoshop CC Audition FrameMaker Magento Adobe Photoshop Photoshop Desktop Substance3D - Sampler
CVE IDTitleCVSSSeverityPublished
CVE-2022-35713 Adobe Photoshop U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PhotoshopCWE-787 7.8 High2022-09-16
CVE-2022-38427 Adobe Photoshop U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability — PhotoshopCWE-824 7.8 High2022-09-16
CVE-2022-38430 Adobe Photoshop MP4 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — PhotoshopCWE-125 7.8 High2022-09-16
CVE-2022-38401 Adobe InCopy PCX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — InCopyCWE-122 7.8 High2022-09-16
CVE-2022-38407 Adobe InCopy EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — InCopyCWE-125 5.5 Medium2022-09-16
CVE-2022-38405 Adobe InCopy SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — InCopyCWE-122 7.8 High2022-09-16
CVE-2022-38406 Adobe InCopy EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — InCopyCWE-125 5.5 Medium2022-09-16
CVE-2022-38404 Adobe InCopy SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — InCopyCWE-122 7.8 High2022-09-16
CVE-2022-38402 Adobe InCopy SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — InCopyCWE-125 7.8 High2022-09-16
CVE-2022-38403 Adobe InCopy SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — InCopyCWE-125 7.8 High2022-09-16
CVE-2022-38410 Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — IllustratorCWE-125 5.5 Medium2022-09-16
CVE-2022-38408 Adobe Illustrator Improper Input Validation Arbitrary code execution — IllustratorCWE-20 7.8 High2022-09-16
CVE-2022-38409 Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — IllustratorCWE-125 5.5 Medium2022-09-16
CVE-2022-38411 Adobe Animate SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — AnimateCWE-122 7.8 High2022-09-16
CVE-2022-38412 Adobe Animate SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — AnimateCWE-125 7.8 High2022-09-16
CVE-2022-35692 Adobe Commerce Improper Access Control Security feature bypass — Magento CommerceCWE-863 5.3 Medium2022-08-19
CVE-2022-34259 Adobe Commerce Improper Access Control Security feature bypass — Magento CommerceCWE-284 5.3 Medium2022-08-16
CVE-2022-34257 Adobe Commerce Stored XSS Arbitrary code execution — Magento CommerceCWE-79 6.1 Medium2022-08-16
CVE-2022-34253 Adobe Commerce XML Injection Arbitrary code execution — Magento CommerceCWE-91 7.2 -2022-08-16
CVE-2022-34255 Adobe Commerce Improper Access Control Privilege escalation — Magento CommerceCWE-284 8.8 High2022-08-16
CVE-2022-34254 Adobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution — Magento CommerceCWE-22 9.6 -2022-08-16
CVE-2022-34256 Adobe Commerce Improper Authorization Privilege escalation — Magento CommerceCWE-285 7.5 High2022-08-16
CVE-2022-34258 Adobe Commerce Stored XSS Arbitrary code execution — Magento CommerceCWE-79 4.8 Medium2022-08-16
CVE-2022-35676 Adobe FrameMaker SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — FrameMakerCWE-122 7.8 High2022-08-11
CVE-2022-34264 Adobe FrameMaker Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — FrameMakerCWE-125 5.5 Medium2022-08-11
CVE-2022-34260 Adobe Illustrator Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IllustratorCWE-787 7.8 -2022-08-11
CVE-2022-34263 Adobe Illustrator Font Parsing Use-After-Free Remote Code Execution Vulnerability — IllustratorCWE-416 7.8 -2022-08-11
CVE-2022-34261 Adobe Illustrator Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — IllustratorCWE-125 5.5 Medium2022-08-11
CVE-2022-34262 Adobe Illustrator Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — IllustratorCWE-125 5.5 Medium2022-08-11
CVE-2022-35666 Adobe Acrobat Reader Improper Input Validation Remote Code Execution Vulnerability — Acrobat ReaderCWE-20 7.8 High2022-08-11

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.