adobe
7,295 tracked vulnerabilities.
CVE-2026-21302
MEDIUM
Substance 3D Modeler < 1.22.5 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21301
MEDIUM
Substance 3D Modeler < 1.22.5 - Denial of Service via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21300
MEDIUM
Substance 3D Modeler < 1.22.5 - Denial of Service via NULL Pointer Dereference
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21299
HIGH
Substance 3D Modeler < 1.22.5 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21298
HIGH
Substance 3D Modeler < 1.22.5 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21308
MEDIUM
Substance 3D Designer < 15.1.0 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21307
HIGH
Substance 3D Designer < 15.1.0 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21306
HIGH
Substance3D Sampler < 5.1.3 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21305
HIGH
Substance 3D Painter < 11.1.2 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21287
HIGH
Substance3D Stager < 3.1.6 - Use-After-Free via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21304
HIGH
Adobe InDesign < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21288
MEDIUM
Adobe Illustrator <= 30.0 - Denial of Service via NULL Pointer Dereference
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21283
HIGH
Adobe Bridge 15.1.2 and <=16.0 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21281
HIGH
Adobe InCopy < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21280
HIGH
Adobe Illustrator <= 30.0 - Untrusted Search Path
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21278
MEDIUM
Adobe InDesign < 20.5.1 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21277
HIGH
Adobe InDesign < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21276
HIGH
InDesign Desktop <21.0, 19.5.5 - RCE
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21275
HIGH
InDesign Desktop <21.0, 19.5.5 - RCE
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21274
HIGH
Adobe Dreamweaver < 21.7 - Incorrect Authorization leading to Arbitrary Code Execution
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21272
HIGH
Dreamweaver < 21.7 - Arbitrary File System Write via Malicious File Processing
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21271
HIGH
Dreamweaver < 21.7 - Arbitrary Code Execution via Malicious File
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21268
HIGH
Dreamweaver < 21.7 - Arbitrary Code Execution via Malicious File
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21267
HIGH
Dreamweaver Desktop <21.6 - Code Injection
Jan 13, 2026
CVSS 8.6
EPSS 0.01
CVE-2025-64888
MEDIUM
Adobe Experience Manager < 6.5.24.0 and < 2025.12.0 - DOM-based Cross-Site Scripting
Dec 10, 2025
CVSS 5.4
EPSS 0.00
Products
acrobat_dc 1,799
acrobat_reader_dc 1,799
acrobat 1,381
experience_manager 1,148
acrobat_reader 1,085
flash_player 1,084
air 413
air_sdk 409
air_sdk_\&_compiler 365
reader 360
flash_player_desktop_runtime 294
coldfusion 226
indesign 202
commerce 184
experience_manager_cloud_service 183
shockwave_player 174
illustrator 173
magento 161
adobe_air 146
bridge 136
after_effects 125
framemaker 118
dimension 116
commerce_b2b 111
animate 102
adobe_air_sdk 96
photoshop 92
Acrobat Reader 90
air_desktop_runtime 88
substance_3d_stager 87
Quick Filters