EUVD-2026-10942

Illustrator versions 29.8.4, 30.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2026-21349 Lightroom Desktop | Out-of-bounds Write (CWE-787)

Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2026-21337

Substance3D Designer (Version 15.1.0 and earlier) contains an Out-of-bounds Read that can expose memory. The vulnerability affects the software component handling file parsing, enabling a crafted file to access sensitive data in memory. Exploitation requires user interaction: a victim must open a...

CVE-2026-21315

Audition versions 25.3 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure, allowing access to sensitive information stored in memory. Exploitation requires user interaction: a victim must open a malicious file. CVSS: 3.1, base score 5.5 (Medium), co...

PT-2026-7368

Name of the Vulnerable Software and Affected Versions Audition versions 25.3 and earlier Description Audition versions 25.3 and earlier are susceptible to an Access of Memory Location After End of Buffer issue, potentially leading to application denial-of-service. An attacker could leverage this ...

CVE-2026-21272

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requir...

CVE-2026-21305

Substance3D - Painter versions 11.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54269

Animate versions 23.0.13, 24.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

EUVD-2025-24520

Malicious code in bioql PyPI...

CVE-2025-54230

Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54216

InCopy versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54218

InCopy versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54221

InCopy versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54223

Adobe InCopy versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability (CVE-2025-54223) that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Public sources in the provided...

CVE-2025-54213

Adobe InDesign Desktop is affected by CVE-2025-54213: an out-of-bounds write vulnerability in InDesign Desktop versions 20.4 and 19.5.4 and earlier could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). The issue...

CVE-2025-54226

Summary: InDesign Desktop versions 20.4 and earlier (including 19.5.4 and earlier) are affected by a Use After Free vulnerability (CWE-416) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). The issue is...

CVE-2025-54200 Substance3D - Modeler | Out-of-bounds Read (CWE-125)

Substance3D - Modeler versions 1.22.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54200 Substance3D - Modeler | Out-of-bounds Read (CWE-125)

Substance3D - Modeler versions 1.22.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

PT-2025-32905 · Adobe · Substance3D - Painter

Name of the Vulnerable Software and Affected Versions: Substance3D - Painter versions 11.0.2 and earlier Description: Substance3D - Painter versions 11.0.2 and earlier are affected by an out-of-bounds read issue that may lead to the disclosure of sensitive memory. Exploitation of this issue...

PT-2025-32763 · Adobe · Illustrator

Name of the Vulnerable Software and Affected Versions: Illustrator versions 28.7.8 and earlier Illustrator version 29.6.1 and earlier Description: Illustrator is susceptible to a NULL Pointer Dereference issue that may result in application denial-of-service. An attacker could exploit this issue ...