adobe

7,383 tracked vulnerabilities.

CVE-2025-43563 CRITICAL
ColdFusion 2025.1 2023.13 2021.19 and earlier - Authenticated Arbitrary File System Read
May 13, 2025
CVSS 9.1
EPSS 0.10
CVE-2025-43562 CRITICAL
Adobe ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated OS Command Injection
May 13, 2025
CVSS 9.1
EPSS 0.35
CVE-2025-43561 CRITICAL
ColdFusion 2025.1 2023.13 2021.19 and earlier - Authenticated Remote Code Execution via Authorization Bypass
May 13, 2025
CVSS 9.1
EPSS 0.14
CVE-2025-43560 CRITICAL
Adobe ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated Remote Code Execution
May 13, 2025
CVSS 9.1
EPSS 0.13
CVE-2025-43559 CRITICAL
ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated Remote Code Execution
May 13, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-43554 HIGH
Substance 3D Modeler < 1.22.0 - Out-of-bounds Write via Malicious File
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43553 HIGH
Substance 3D Modeler < 1.22.0 - Uncontrolled Search Path Element
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43551 MEDIUM
Substance 3D Stager < 3.1.2 - Out-of-bounds Read via Malicious File
May 13, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-43549 HIGH
Substance 3D Stager < 3.1.2 - Use-After-Free
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43548 HIGH
Adobe Dimension <= 4.1.2 - Out-of-bounds Write
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30316 MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting in Form Fields
May 13, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30315 MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting via Form Field Injection
May 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30314 MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting via Form Field Injection
May 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-43557 HIGH
Adobe Animate < 23.0.12 - Access of Uninitialized Pointer
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43556 HIGH
Adobe Animate < 23.0.12 - Integer Overflow or Wraparound
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43555 HIGH
Adobe Animate < 23.0.12 - Integer Underflow Leading to Arbitrary Code Execution
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43547 HIGH
Adobe Bridge < 14.1.7 - Integer Overflow or Wraparound via Malicious File
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43546 HIGH
Adobe Bridge < 14.1.7 - Integer Underflow leading to Arbitrary Code Execution
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43545 HIGH
Adobe Bridge < 14.1.7 - Arbitrary Code Execution via Uninitialized Pointer Access
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30330 HIGH
Illustrator <29.3,28.7.5 - Heap-based Buffer Overflow
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30329 MEDIUM
Adobe Animate < 23.0.12 - Denial of Service via NULL Pointer Dereference
May 13, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-30328 HIGH
Animate <24.0.8,23.0.11 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30326 HIGH
Photoshop Desktop <26.5, 25.12.2 - RCE
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30325 HIGH
Photoshop Desktop <26.5, 25.12.2 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30324 HIGH
Photoshop Desktop <26.5, 25.12.2 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00