adobe
7,383 tracked vulnerabilities.
CVE-2025-43563
CRITICAL
ColdFusion 2025.1 2023.13 2021.19 and earlier - Authenticated Arbitrary File System Read
May 13, 2025
CVSS 9.1
EPSS 0.10
CVE-2025-43562
CRITICAL
Adobe ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated OS Command Injection
May 13, 2025
CVSS 9.1
EPSS 0.35
CVE-2025-43561
CRITICAL
ColdFusion 2025.1 2023.13 2021.19 and earlier - Authenticated Remote Code Execution via Authorization Bypass
May 13, 2025
CVSS 9.1
EPSS 0.14
CVE-2025-43560
CRITICAL
Adobe ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated Remote Code Execution
May 13, 2025
CVSS 9.1
EPSS 0.13
CVE-2025-43559
CRITICAL
ColdFusion <= 2025.1, <= 2023.13, <= 2021.19 - Authenticated Remote Code Execution
May 13, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-43554
HIGH
Substance 3D Modeler < 1.22.0 - Out-of-bounds Write via Malicious File
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43553
HIGH
Substance 3D Modeler < 1.22.0 - Uncontrolled Search Path Element
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43551
MEDIUM
Substance 3D Stager < 3.1.2 - Out-of-bounds Read via Malicious File
May 13, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-43549
HIGH
Substance 3D Stager < 3.1.2 - Use-After-Free
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43548
HIGH
Adobe Dimension <= 4.1.2 - Out-of-bounds Write
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30316
MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting in Form Fields
May 13, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30315
MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting via Form Field Injection
May 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30314
MEDIUM
Adobe Connect < 12.9 - Stored Cross-Site Scripting via Form Field Injection
May 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-43557
HIGH
Adobe Animate < 23.0.12 - Access of Uninitialized Pointer
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43556
HIGH
Adobe Animate < 23.0.12 - Integer Overflow or Wraparound
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43555
HIGH
Adobe Animate < 23.0.12 - Integer Underflow Leading to Arbitrary Code Execution
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43547
HIGH
Adobe Bridge < 14.1.7 - Integer Overflow or Wraparound via Malicious File
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43546
HIGH
Adobe Bridge < 14.1.7 - Integer Underflow leading to Arbitrary Code Execution
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-43545
HIGH
Adobe Bridge < 14.1.7 - Arbitrary Code Execution via Uninitialized Pointer Access
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30330
HIGH
Illustrator <29.3,28.7.5 - Heap-based Buffer Overflow
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30329
MEDIUM
Adobe Animate < 23.0.12 - Denial of Service via NULL Pointer Dereference
May 13, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-30328
HIGH
Animate <24.0.8,23.0.11 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30326
HIGH
Photoshop Desktop <26.5, 25.12.2 - RCE
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30325
HIGH
Photoshop Desktop <26.5, 25.12.2 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30324
HIGH
Photoshop Desktop <26.5, 25.12.2 - Code Injection
May 13, 2025
CVSS 7.8
EPSS 0.00
Products
acrobat_dc 1,799
acrobat_reader_dc 1,799
acrobat 1,381
experience_manager 1,148
acrobat_reader 1,085
flash_player 1,084
air 413
air_sdk 409
air_sdk_\&_compiler 365
reader 360
flash_player_desktop_runtime 294
coldfusion 228
indesign 202
commerce 184
experience_manager_cloud_service 183
shockwave_player 174
illustrator 173
magento 161
adobe_air 146
bridge 136
after_effects 125
framemaker 118
dimension 116
commerce_b2b 111
animate 102
adobe_air_sdk 96
photoshop 92
Acrobat Reader 90
air_desktop_runtime 88
substance_3d_stager 87
Quick Filters