adobe

7,295 tracked vulnerabilities.

CVE-2026-21302 MEDIUM
Substance 3D Modeler < 1.22.5 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21301 MEDIUM
Substance 3D Modeler < 1.22.5 - Denial of Service via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21300 MEDIUM
Substance 3D Modeler < 1.22.5 - Denial of Service via NULL Pointer Dereference
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21299 HIGH
Substance 3D Modeler < 1.22.5 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21298 HIGH
Substance 3D Modeler < 1.22.5 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21308 MEDIUM
Substance 3D Designer < 15.1.0 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21307 HIGH
Substance 3D Designer < 15.1.0 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21306 HIGH
Substance3D Sampler < 5.1.3 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21305 HIGH
Substance 3D Painter < 11.1.2 - Out-of-bounds Write via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21287 HIGH
Substance3D Stager < 3.1.6 - Use-After-Free via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21304 HIGH
Adobe InDesign < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21288 MEDIUM
Adobe Illustrator <= 30.0 - Denial of Service via NULL Pointer Dereference
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21283 HIGH
Adobe Bridge 15.1.2 and <=16.0 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21281 HIGH
Adobe InCopy < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21280 HIGH
Adobe Illustrator <= 30.0 - Untrusted Search Path
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21278 MEDIUM
Adobe InDesign < 20.5.1 - Out-of-bounds Read via Malicious File
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21277 HIGH
Adobe InDesign < 20.5.1 - Heap-based Buffer Overflow via Malicious File
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21276 HIGH
InDesign Desktop <21.0, 19.5.5 - RCE
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21275 HIGH
InDesign Desktop <21.0, 19.5.5 - RCE
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21274 HIGH
Adobe Dreamweaver < 21.7 - Incorrect Authorization leading to Arbitrary Code Execution
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-21272 HIGH
Dreamweaver < 21.7 - Arbitrary File System Write via Malicious File Processing
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21271 HIGH
Dreamweaver < 21.7 - Arbitrary Code Execution via Malicious File
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21268 HIGH
Dreamweaver < 21.7 - Arbitrary Code Execution via Malicious File
Jan 13, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21267 HIGH
Dreamweaver Desktop <21.6 - Code Injection
Jan 13, 2026
CVSS 8.6
EPSS 0.01
CVE-2025-64888 MEDIUM
Adobe Experience Manager < 6.5.24.0 and < 2025.12.0 - DOM-based Cross-Site Scripting
Dec 10, 2025
CVSS 5.4
EPSS 0.00