Adobe Lightroom Desktop 缓冲区错误漏洞

Adobe Lightroom Desktop is a professional photo management and editing software from the American company Audobee Adobe, designed to provide photographers and image editors with powerful workflow and editing tools. Adobe Lightroom Desktop suffers from an out-of-bounds write vulnerability that can...

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects suffers from a resource management error vulnerability...

Adobe Lightroom Classic < 15.1.1 Arbitrary code execution (APSB26-06) (macOS)

The version of Adobe Lightroom Classic installed on the remote macOS host is prior to 15.1.1. It is, therefore, affected by a vulnerability as referenced in the APSB26-06 advisory. - Out-of-bounds Write CWE-787 potentially leading to Arbitrary code execution CVE-2026-21349 Note that Nessus has no...

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...

Adobe Bridge 输入验证错误漏洞

Adobe Bridge is a file viewer developed by Adobe, a company based in the United States. Versions of Adobe Bridge such as 15.1.3, 16.0.1, and earlier versions had a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows or circularity errors, which coul...

KLA90877 ACE vulnerability in Microsoft Copilot Plugin

A remote code execution vulnerability was found in Microsoft Copilot Studio. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories CVE-2026-21516 Exploitation Related products GitHub-Copilot-Plugin CVE list CVE-2026-21516...

Adobe Substance3D Stager 缓冲区错误漏洞

Substance 3D Stager is the United States of America Ordoby Adobe company launched a dedicated to the 3D scene set, lighting settings and high-quality rendering of professional software. An out-of-bounds write vulnerability exists in Adobe Substance 3D Stager, which can be exploited by attackers t...

PT-2026-7370

Name of the Vulnerable Software and Affected Versions After Effects versions 25.6 and earlier Description The software contains an out-of-bounds write issue that may lead to arbitrary code execution with the privileges of the current user. Successful exploitation requires a user to open a special...

PT-2026-7251

Name of the Vulnerable Software and Affected Versions NX versions prior to 2512 Description The application contains a data validation issue that may allow an attacker with local access to manipulate internal data during the PDF export process. This could potentially lead to arbitrary code...

PT-2026-7364

Name of the Vulnerable Software and Affected Versions Audition versions 25.3 and earlier Description Audition versions 25.3 and earlier are susceptible to an out-of-bounds write issue. Successful exploitation could lead to arbitrary code execution with the privileges of the current user. User...

MongoDB Ruby Driver 安全漏洞

The MongoDB Ruby Driver is an open-source Ruby library developed by MongoDB. There is a security vulnerability in the MongoDB Ruby Driver, which may allow arbitrary Ruby code to be executed when processing specially crafted Hash r types...

Adobe Substance3D Designer 缓冲区错误漏洞

Adobe Substance3D Designer is a texture and material creation software from the American company Audobee Adobe. A buffer overflow vulnerability exists in Adobe Substance3D Designer, which can be exploited by an attacker to execute arbitrary code in the current user environment...

Adobe After Effects 缓冲区错误漏洞

Adobe After Effects is a visual effects and dynamic graphics production software developed by Adobe, Inc. in the United States. This software is primarily used for 2D and 3D compositing, animation production, and visual special effects. Versions of Adobe After Effects prior to 25.6 contained a...

Adobe Lightroom Classic < 15.1.1 Arbitrary code execution (APSB26-06)

The version of Adobe Lightroom Classic installed on the remote Windows host is prior to 15.1.1. It is, therefore, affected by a vulnerability as referenced in the APSB26-06 advisory. - Out-of-bounds Write CWE-787 potentially leading to Arbitrary code execution CVE-2026-21349 Note that Nessus has...

PT-2026-7382

After Effects versions 25.6 and earlier are affected by an Access of Resource Using Incompatible Type 'Type Confusion' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

Adobe Audition 缓冲区错误漏洞

Adobe Audition is a set of multi-track editing tools from the American company Audobee Adobe. The product mainly uses a comprehensive toolset that includes multi-track, waveform and spectral display to mix, edit and create audio content. Adobe Audition suffers from an out-of-bounds write...

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects suffers from a resource management error vulnerability...

PT-2026-7463

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP affected versions not specified Description A buffer overflow exists in the AMD Secure Processor ASP bootloader. This flaw could allow an attacker to overwrite memory. Successful exploitation may lead to privilege...

APSB26-19 : Security update available for Adobe Substance 3D Designer

Adobe has released an update for Adobe Substance 3D Designer that addresses critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution, application denial-of-service, and memory exposure in the context of the current user...