Illustrator Security Vulnerabilities and Issues — Illustrator CVE List

Lucene search

AdobeIllustrator

15 matches found

CVE•added 2021/06/28 2:15 p.m.•69 views

CVE-2021-21101

Adobe Illustrator version 25.2 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue re...

9.3CVSS8.7AI score0.03037EPSS

CVE•added 2021/02/11 9:15 p.m.•67 views

CVE-2021-21053

Adobe Illustrator version 25.1 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires use...

9.3CVSS7.6AI score0.02333EPSS

CVE•added 2021/09/08 5:15 p.m.•67 views

CVE-2021-21105

Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires...

9.3CVSS8.9AI score0.0252EPSS

CVE•added 2021/02/11 9:15 p.m.•64 views

CVE-2021-21054

9.3CVSS7.6AI score0.0392EPSS

CVE•added 2021/08/20 7:15 p.m.•63 views

CVE-2021-28593

Adobe Illustrator version 25.2.3 (and earlier) is affected by a Use After Free vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose potential sensitive information in the context of the current user. Exploitation of this issu...

5.5CVSS4.4AI score0.0127EPSS

CVE•added 2021/08/20 7:15 p.m.•61 views

CVE-2021-36008

Adobe Illustrator version 25.2.3 (and earlier) is affected by an Use-after-free vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to read arbitrary file system information in the context of the current user. Exploitation of this issue...

5.5CVSS4.5AI score0.00811EPSS

CVE•added 2021/09/08 5:15 p.m.•59 views

CVE-2021-21104

Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to remote code execution in the context of the current user. Exploitation of this issue requires user in...

9.3CVSS8.9AI score0.02172EPSS

CVE•added 2021/08/20 7:15 p.m.•59 views

CVE-2021-28591

Adobe Illustrator version 25.2.3 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue ...

7.8CVSS7.8AI score0.06404EPSS

CVE•added 2021/09/08 5:15 p.m.•57 views

CVE-2021-21103

Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user. Exploitation of this issue ...

9.3CVSS5.9AI score0.00489EPSS

CVE•added 2021/08/20 7:15 p.m.•57 views

CVE-2021-36009

Adobe Illustrator version 25.2.3 (and earlier) is affected by an memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue re...

9.3CVSS8AI score0.00782EPSS

CVE•added 2021/08/20 7:15 p.m.•54 views

CVE-2021-36010

Adobe Illustrator version 25.2.3 (and earlier) is affected by an out-of-bounds read vulnerability that could lead to disclosure of memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must ope...

4.3CVSS3.6AI score0.0074EPSS

CVE•added 2021/08/20 7:15 p.m.•54 views

CVE-2021-36011

Adobe Illustrator version 25.2.3 (and earlier) is affected by a potential Command injection vulnerability when chained with a development and debugging tool for JavaScript scripts. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of th...

9.3CVSS8.1AI score0.02609EPSS

CVE•added 2021/01/13 11:15 p.m.•51 views

CVE-2021-21007

Adobe Illustrator version 25.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7CVSS7AI score0.01644EPSS

CVE•added 2021/06/28 2:15 p.m.•49 views

CVE-2021-21102

Adobe Illustrator version 25.2 (and earlier) is affected by a Path Traversal vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires...

9.3CVSS8.7AI score0.02445EPSS

CVE•added 2021/08/20 7:15 p.m.•48 views

CVE-2021-28592

7.8CVSS7.8AI score0.06404EPSS