Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Adobe — Vulnerabilities & Security Advisories 4289

Browse all 4289 CVE security advisories affecting Adobe. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Adobe:Adobe Experience ManagerAdobe Acrobat and ReaderAcrobat ReaderAdobe CommerceIllustratorInDesign DesktopColdFusionDimensionBridgeAfter EffectsAnimateExperience ManagerSubstance3D - StagerMagento CommerceAdobe FramemakerSubstance3D - PainterInDesignInCopyPhotoshopMedia EncoderSubstance3D - ModelerAdobe Photoshop CCSubstance3D - DesignerAdobe ConnectAuditionFrameMakerMagentoAdobe PhotoshopPhotoshop DesktopSubstance3D - Sampler
CVE IDTitleCVSSSeverityPublished
CVE-2025-54250 Adobe Experience Manager | Improper Input Validation (CWE-20) — Adobe Experience ManagerCWE-20 4.9 Medium2025-09-09
CVE-2025-54247 Adobe Experience Manager | Improper Input Validation (CWE-20) — Adobe Experience ManagerCWE-20 6.5 Medium2025-09-09
CVE-2025-54246 Adobe Experience Manager | Incorrect Authorization (CWE-863) — Adobe Experience ManagerCWE-863 6.5 Medium2025-09-09
CVE-2025-54248 Adobe Experience Manager | Improper Input Validation (CWE-20) — Adobe Experience ManagerCWE-20 7.7 High2025-09-09
CVE-2025-54252 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-09-09
CVE-2025-54251 Adobe Experience Manager | XML Injection (aka Blind XPath Injection) (CWE-91) — Adobe Experience ManagerCWE-91 4.3 Medium2025-09-09
CVE-2025-54249 Adobe Experience Manager | Server-Side Request Forgery (SSRF) (CWE-918) — Adobe Experience ManagerCWE-918 6.5 Medium2025-09-09
CVE-2025-54236 Adobe Commerce | Improper Input Validation (CWE-20) — Adobe CommerceCWE-20 9.1 Critical2025-09-09
CVE-2025-47054 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46849 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46852 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46856 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46932 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46936 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46962 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-46998 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience ManagerCWE-79 5.4 Medium2025-08-20
CVE-2025-54234 ColdFusion | Server-Side Request Forgery (SSRF) (CWE-918) — ColdFusionCWE-918 2.7 Low2025-08-18
CVE-2025-54238 Dimension | Out-of-bounds Read (CWE-125) — DimensionCWE-125 5.5 Medium2025-08-12
CVE-2025-54233 Adobe Framemaker | Out-of-bounds Read (CWE-125) — Adobe FramemakerCWE-125 5.5 Medium2025-08-12
CVE-2025-54230 Adobe Framemaker | Use After Free (CWE-416) — Adobe FramemakerCWE-416 7.8 High2025-08-12
CVE-2025-54231 Adobe Framemaker | Use After Free (CWE-416) — Adobe FramemakerCWE-416 7.8 High2025-08-12
CVE-2025-54232 Adobe Framemaker | Use After Free (CWE-416) — Adobe FramemakerCWE-416 7.8 High2025-08-12
CVE-2025-54229 Adobe Framemaker | Use After Free (CWE-416) — Adobe FramemakerCWE-416 7.8 High2025-08-12
CVE-2025-54222 Substance3D - Stager | Out-of-bounds Write (CWE-787) — Substance3D - StagerCWE-787 7.8 High2025-08-12
CVE-2025-54216 InCopy | Out-of-bounds Write (CWE-787) — InCopyCWE-787 7.8 High2025-08-12
CVE-2025-54217 InCopy | Heap-based Buffer Overflow (CWE-122) — InCopyCWE-122 7.8 High2025-08-12
CVE-2025-54215 InCopy | Out-of-bounds Write (CWE-787) — InCopyCWE-787 7.8 High2025-08-12
CVE-2025-54218 InCopy | Out-of-bounds Write (CWE-787) — InCopyCWE-787 7.8 High2025-08-12
CVE-2025-54223 InCopy | Use After Free (CWE-416) — InCopyCWE-416 7.8 High2025-08-12
CVE-2025-54219 InCopy | Heap-based Buffer Overflow (CWE-122) — InCopyCWE-122 7.8 High2025-08-12

This page lists every published CVE security advisory associated with Adobe. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.