714 matches found
CVE-2025-54208
InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-54219
CVE-2025-54219 affects Adobe InCopy: heap-based buffer overflow in InCopy versions 20.4, 19.5.4 and earlier. Root cause: improper memory handling leading to a heap overflow. Impact: arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must op...
CVE-2025-54221
Summary: CVE-2025-54221 affects Adobe InCopy versions 20.4, 19.5.4 and earlier with an out-of-bounds write that can lead to arbitrary code execution in the context of the current user when a malicious file is opened. The issue requires user interaction. Concrete details from connected sources con...
CVE-2025-54225
CVE-2025-54225 concerns Adobe InDesign Desktop (versions 20.4, 19.5.4 and earlier) with a Use-After-Free vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires the victim to open a crafted file (user interaction). Publicly disclosed sourc...
CVE-2025-49571 Substance3D - Modeler | Uncontrolled Search Path Element (CWE-427)
Substance3D - Modeler versions 1.22.0 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. If the application uses an uncontrolled search path to locate critical resources such as programs, ...
Adobe Substance3D 缓冲区错误漏洞
Adobe Substance 3D Stager is a virtual 3D studio from the American company Audobee Adobe. Adobe Substance 3D Stager suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the context of the current user...
PT-2025-32929 · Adobe · Indesign Desktop 19.5.4 +1
Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions 20.4 and earlier InDesign Desktop version 19.5.4 Description: InDesign Desktop versions 20.4 and earlier, and version 19.5.4 are affected by a heap-based buffer overflow that may lead to arbitrary code execution with...
Adobe Illustrator Stack Buffer Overflow Vulnerability (CNVD-2025-16547)
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A stack buffer overflow vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to execute arbitrary code in the context of the current user...
Adobe Framemaker Buffer Overflow Vulnerability (CNVD-2025-16395)
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A buffer overflow vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to execute...
Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2025-16552)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...
Adobe Illustrator Out-of-Bounds Write Vulnerability (CNVD-2025-16401)
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. An out-of-bounds write vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to execute arbitrary code in the context of the current user...
Adobe Framemaker 缓冲区错误漏洞
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A buffer overflow vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to execute...
Adobe Illustrator 缓冲区错误漏洞
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A buffer overflow vulnerability exists in Adobe Illustrator that can be exploited by an attacker to execute arbitrary code in the context of the current user...
Adobe Substance3D 缓冲区错误漏洞
Adobe Substance 3D Designer is a 3D design software from the American company Audobee Adobe. Adobe Substance 3D Designer suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...
Adobe Framemaker 安全漏洞
Adobe FrameMaker is a powerful tool for creating complex technical documentation and publishing it to a variety of delivery channels. A heap buffer overflow vulnerability exists in Adobe Framemaker 2020.8, 2022.6 and earlier versions. An attacker can exploit this vulnerability to execute arbitrar...
Adobe Framemaker 安全漏洞
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. Adobe Framemaker suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute...
Adobe Framemaker 数字错误漏洞
Adobe FrameMaker is a powerful tool for creating complex technical documentation and publishing it to a variety of delivery channels. An integer underflow vulnerability exists in Adobe Framemaker versions 2020.8, 2022.6 and earlier. An attacker can exploit this vulnerability to execute arbitrary...
The vulnerabilities of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 are related to the use of memory after it is freed. This allows attackers to execute arbitrary code.
The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code in the context of the...
CVE-2025-43559
ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security mechanisms and...
CVE-2025-27198
Photoshop Desktop versions 25.12.1, 26.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...