Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4289

Browse all 4289 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Adobe:Adobe Experience ManagerAdobe Acrobat and ReaderAcrobat ReaderAdobe CommerceIllustratorInDesign DesktopColdFusionDimensionBridgeAfter EffectsAnimateExperience ManagerSubstance3D - StagerMagento CommerceAdobe FramemakerSubstance3D - PainterInDesignInCopyPhotoshopMedia EncoderSubstance3D - ModelerAdobe Photoshop CCSubstance3D - DesignerAdobe ConnectAuditionFrameMakerMagentoAdobe PhotoshopPhotoshop DesktopSubstance3D - Sampler
CVE IDTitleCVSSSeverityPublished
CVE-2025-24409 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863 8.2 High2025-02-11
CVE-2025-24425 Adobe Commerce | Business Logic Errors (CWE-840) — Adobe CommerceCWE-840 5.3 Medium2025-02-11
CVE-2025-24421 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863 4.3 Medium2025-02-11
CVE-2025-24412 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79 8.7 High2025-02-11
CVE-2025-24426 Adobe Commerce | Improper Access Control (CWE-284) — Adobe CommerceCWE-284 6.5 Medium2025-02-11
CVE-2025-24427 Adobe Commerce | Improper Access Control (CWE-284) — Adobe CommerceCWE-284 6.5 Medium2025-02-11
CVE-2025-24428 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79 5.4 Medium2025-02-11
CVE-2025-24410 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79 8.7 High2025-02-11
CVE-2025-24408 Adobe Commerce | Information Exposure (CWE-200) — Adobe CommerceCWE-200 6.5 Medium2025-02-11
CVE-2025-24435 Adobe Commerce | Improper Access Control (CWE-284) — Adobe CommerceCWE-284 4.3 Medium2025-02-11
CVE-2025-21162 Photoshop Elements | Creation of Temporary File in Directory with Incorrect Permissions (CWE-379) — Photoshop ElementsCWE-379 5.5 Medium2025-02-11
CVE-2025-21161 Substance3D - Designer | Out-of-bounds Write (CWE-787) — Substance3D - DesignerCWE-787 7.8 High2025-02-11
CVE-2025-21160 Illustrator | Integer Underflow (Wrap or Wraparound) (CWE-191) — IllustratorCWE-191 7.8 High2025-02-11
CVE-2025-21159 Illustrator | Use After Free (CWE-416) — IllustratorCWE-416 7.8 High2025-02-11
CVE-2025-21163 Illustrator | Stack-based Buffer Overflow (CWE-121) — IllustratorCWE-121 7.8 High2025-02-11
CVE-2025-21156 InCopy | Integer Underflow (Wrap or Wraparound) (CWE-191) — InCopyCWE-191 7.8 High2025-02-11
CVE-2025-21155 Substance3D - Stager | NULL Pointer Dereference (CWE-476) — Substance3D - StagerCWE-476 5.5 Medium2025-02-11
CVE-2025-21126 InDesign Desktop | Improper Input Validation (CWE-20) — InDesign DesktopCWE-20 5.5 Medium2025-02-11
CVE-2025-21158 InDesign Desktop | Integer Underflow (Wrap or Wraparound) (CWE-191) — InDesign DesktopCWE-191 7.8 High2025-02-11
CVE-2025-21125 InDesign Desktop | NULL Pointer Dereference (CWE-476) — InDesign DesktopCWE-476 5.5 Medium2025-02-11
CVE-2025-21123 InDesign Desktop | Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122 7.8 High2025-02-11
CVE-2025-21157 InDesign Desktop | Out-of-bounds Write (CWE-787) — InDesign DesktopCWE-787 7.8 High2025-02-11
CVE-2025-21124 InDesign Desktop | Out-of-bounds Read (CWE-125) — InDesign DesktopCWE-125 5.5 Medium2025-02-11
CVE-2025-21121 InDesign Desktop | Out-of-bounds Write (CWE-787) — InDesign DesktopCWE-787 7.8 High2025-02-11
CVE-2024-53962 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-02-04
CVE-2024-53963 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-02-04
CVE-2024-53966 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-02-04
CVE-2024-53964 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-02-04
CVE-2024-53965 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-02-04
CVE-2025-21136 Substance3D - Designer | Out-of-bounds Write (CWE-787) — Substance3D - DesignerCWE-787 7.8 High2025-01-14

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.