Adobe — Vulnerabilities & Security Advisories 4289

Browse all 4289 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Paused
CVE-2025-61819	Photoshop Desktop \| Heap-based Buffer Overflow (CWE-122) — Photoshop DesktopCWE-122	7.8	High	2025-11-11
CVE-2025-61816	InCopy \| Heap-based Buffer Overflow (CWE-122) — InCopyCWE-122	7.8	High	2025-11-11
CVE-2025-61818	InCopy \| Use After Free (CWE-416) — InCopyCWE-416	7.8	High	2025-11-11
CVE-2025-61817	InCopy \| Use After Free (CWE-416) — InCopyCWE-416	7.8	High	2025-11-11
CVE-2025-61815	InDesign Desktop \| Use After Free (CWE-416) — InDesign DesktopCWE-416	7.8	High	2025-11-11
CVE-2025-61814	InDesign Desktop \| Use After Free (CWE-416) — InDesign DesktopCWE-416	7.8	High	2025-11-11
CVE-2025-61824	InDesign Desktop \| Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122	7.8	High	2025-11-11
CVE-2025-61832	InDesign Desktop \| Heap-based Buffer Overflow (CWE-122) — InDesign DesktopCWE-122	7.8	High	2025-11-11
CVE-2025-54271	Creative Cloud Desktop \| Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367) — Creative Cloud DesktopCWE-367	5.6	Medium	2025-10-15
CVE-2025-54268	Bridge \| Heap-based Buffer Overflow (CWE-122) — BridgeCWE-122	7.8	High	2025-10-15
CVE-2025-54278	Bridge \| Heap-based Buffer Overflow (CWE-122) — BridgeCWE-122	5.5	Medium	2025-10-15
CVE-2025-61804	Animate \| Heap-based Buffer Overflow (CWE-122) — AnimateCWE-122	7.8	High	2025-10-15
CVE-2025-54279	Animate \| Use After Free (CWE-416) — AnimateCWE-416	7.8	High	2025-10-15
CVE-2025-54269	Animate \| Out-of-bounds Read (CWE-125) — AnimateCWE-125	5.5	Medium	2025-10-15
CVE-2025-54270	Animate \| NULL Pointer Dereference (CWE-476) — AnimateCWE-476	5.5	Medium	2025-10-15
CVE-2025-49552	Adobe Connect \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe ConnectCWE-79	7.3	High	2025-10-14
CVE-2025-49553	Adobe Connect \| Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe ConnectCWE-79	9.3	Critical	2025-10-14
CVE-2025-54196	Adobe Connect \| URL Redirection to Untrusted Site ('Open Redirect') (CWE-601) — Adobe ConnectCWE-601	3.1	Low	2025-10-14
CVE-2025-61797	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2025-10-14
CVE-2025-54272	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2025-10-14
CVE-2025-61796	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79	5.4	Medium	2025-10-14
CVE-2025-54267	Adobe Commerce \| Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863	6.5	Medium	2025-10-14
CVE-2025-54266	Adobe Commerce \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79	4.8	Medium	2025-10-14
CVE-2025-54263	Adobe Commerce \| Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863	8.1	High	2025-10-14
CVE-2025-54265	Adobe Commerce \| Incorrect Authorization (CWE-863) — Adobe CommerceCWE-863	5.9	Medium	2025-10-14
CVE-2025-54264	Adobe Commerce \| Cross-site Scripting (Stored XSS) (CWE-79) — Adobe CommerceCWE-79	8.1	High	2025-10-14
CVE-2025-61803	Substance3D - Stager \| Integer Overflow or Wraparound (CWE-190) — Substance3D - StagerCWE-190	7.8	High	2025-10-14
CVE-2025-61802	Substance3D - Stager \| Use After Free (CWE-416) — Substance3D - StagerCWE-416	7.8	High	2025-10-14
CVE-2025-61805	Substance3D - Stager \| Out-of-bounds Read (CWE-125) — Substance3D - StagerCWE-125	7.8	High	2025-10-14
CVE-2025-61807	Substance3D - Stager \| Integer Overflow or Wraparound (CWE-190) — Substance3D - StagerCWE-190	7.8	High	2025-10-14

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Support Us — Your donation helps us keep running

Adobe — Vulnerabilities & Security Advisories 4289