Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Adobe — Vulnerabilities & Security Advisories 4485

Browse all 4485 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Adobe Systems Incorporated primarily develops multimedia and creativity software, most notably the PDF format and the Creative Cloud suite. With a vast attack surface encompassing 4,289 recorded CVEs, the company has historically faced significant security challenges. Common vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from complex legacy codebases and third-party integrations. Notable incidents include critical RCE vulnerabilities in Acrobat Reader and Flash Player, which were frequently exploited by state-sponsored actors and criminal syndicates. The discontinuation of Flash Player marked a pivotal shift, yet the persistence of high-severity bugs in PDF parsing and document processing engines continues to pose risks. Adobe’s extensive market share makes it a high-value target, necessitating rigorous patch management and secure coding practices to mitigate the ongoing threat landscape associated with its widely deployed enterprise and consumer applications.

Found 135 results / 4485Clear Filters
CVE IDTitleCVSSSeverityPublished
CVE-2026-48316 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 10.0 Critical2026-07-06
CVE-2026-48315 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 9.3 Critical2026-06-30
CVE-2026-48281 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 10.0 Critical2026-06-30
CVE-2026-48277 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 10.0 Critical2026-06-30
CVE-2026-48285 ColdFusion | Server-Side Request Forgery (SSRF) (CWE-918) — ColdFusionCWE-918 8.6 High2026-06-30
CVE-2026-48313 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 9.3 Critical2026-06-30
CVE-2026-48314 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 6.5 Medium2026-06-30
CVE-2026-48307 ColdFusion | Cross-site Scripting (Reflected XSS) (CWE-79) — ColdFusionCWE-79 8.8 High2026-06-30
CVE-2026-48276 ColdFusion | Unrestricted Upload of File with Dangerous Type (CWE-434) — ColdFusionCWE-434 10.0 Critical2026-06-30
CVE-2026-48282 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 10.0 Critical2026-06-30
CVE-2026-48283 ColdFusion | Unrestricted Upload of File with Dangerous Type (CWE-434) — ColdFusionCWE-434 10.0 Critical2026-06-30
CVE-2026-47929 ColdFusion | Incorrect Authorization (CWE-863) — ColdFusionCWE-863 8.4 High2026-06-09
CVE-2026-47932 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 8.8 High2026-06-09
CVE-2026-47960 ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611) — ColdFusionCWE-611 7.4 High2026-06-09
CVE-2026-47928 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 9.6 Critical2026-06-09
CVE-2026-47931 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 8.4 High2026-06-09
CVE-2026-47930 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 8.1 High2026-06-09
CVE-2026-47933 ColdFusion | Cross-site Scripting (Stored XSS) (CWE-79) — ColdFusionCWE-79 4.8 Medium2026-06-09
CVE-2026-34619 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 7.7 High2026-04-14
CVE-2026-27308 ColdFusion | Uncontrolled Resource Consumption (CWE-400) — ColdFusionCWE-400 2.4 Low2026-04-14
CVE-2026-27282 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 7.5 High2026-04-14
CVE-2026-27305 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) — ColdFusionCWE-22 8.6 High2026-04-14
CVE-2026-27304 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 9.3 Critical2026-04-14
CVE-2026-27306 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 8.4 High2026-04-14
CVE-2026-27307 ColdFusion | Uncontrolled Resource Consumption (CWE-400) — ColdFusionCWE-400 2.4 Low2026-04-14
CVE-2025-61808 ColdFusion | Unrestricted Upload of File with Dangerous Type (CWE-434) — ColdFusionCWE-434 9.1 Critical2025-12-09
CVE-2025-61813 ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611) — ColdFusionCWE-611 8.2 High2025-12-09
CVE-2025-61812 ColdFusion | Improper Input Validation (CWE-20) — ColdFusionCWE-20 8.4 High2025-12-09
CVE-2025-61821 ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611) — ColdFusionCWE-611 6.8 Medium2025-12-09
CVE-2025-64898 ColdFusion | Insufficiently Protected Credentials (CWE-522) — ColdFusionCWE-522 5.3 Medium2025-12-09

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.