Illustrator Security Vulnerabilities and Issues — Illustrator CVE List

Lucene search

AdobeIllustrator

31 matches found

CVE•added 2024/04/11 9:15 a.m.•64 views

CVE-2024-20798

Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

5.5CVSS7AI score0.00022EPSS

CVE•added 2024/05/16 9:15 a.m.•56 views

CVE-2024-20791

Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS6.6AI score0.00088EPSS

CVE•added 2024/12/10 9:15 p.m.•53 views

CVE-2024-49538

Illustrator versions 29.0.0, 28.7.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.4AI score0.00034EPSS

CVE•added 2024/09/13 9:15 a.m.•52 views

CVE-2024-34121

Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2024/05/16 9:15 a.m.•50 views

CVE-2024-20792

Illustrator versions 28.4, 27.9.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.2AI score0.00102EPSS

CVE•added 2024/04/11 6:15 p.m.•49 views

CVE-2024-30271

Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00076EPSS

CVE•added 2024/04/11 6:15 p.m.•49 views

CVE-2024-30273

Illustrator versions 28.3, 27.9.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.7AI score0.00106EPSS

CVE•added 2024/08/14 3:15 p.m.•49 views

CVE-2024-41856

Illustrator versions 28.5, 27.9.4, 28.6, 27.9.5 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2024/11/12 7:15 p.m.•47 views

CVE-2024-45114

Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2024/11/12 7:15 p.m.•47 views

CVE-2024-47456

Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must...

5.5CVSS5.1AI score0.00044EPSS

CVE•added 2024/05/16 9:15 a.m.•46 views

CVE-2024-20793

Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

5.5CVSS5.9AI score0.00023EPSS

CVE•added 2024/09/13 9:15 a.m.•46 views

CVE-2024-41857

Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2024/04/11 6:15 p.m.•45 views

CVE-2024-30272

7.8CVSS7.8AI score0.00076EPSS

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-34138

Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation of this i...

5.5CVSS5.3AI score0.00036EPSS

CVE•added 2024/11/12 7:15 p.m.•44 views

CVE-2024-47454

5.5CVSS5.3AI score0.00044EPSS

CVE•added 2024/08/14 3:15 p.m.•43 views

CVE-2024-34133

Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00043EPSS

CVE•added 2024/09/13 9:15 a.m.•42 views

CVE-2024-43759

Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a DoS condition. Exploitation of this issue requires ...

5.5CVSS5.5AI score0.00037EPSS

CVE•added 2024/12/10 9:15 p.m.•42 views

CVE-2024-49541

Illustrator versions 29.0.0, 28.7.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vic...

5.5CVSS6.1AI score0.00035EPSS

CVE•added 2024/08/14 3:15 p.m.•41 views

CVE-2024-34136

5.5CVSS5.3AI score0.00036EPSS

CVE•added 2024/08/14 3:15 p.m.•40 views

CVE-2024-34118

Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation vulnerability that could lead to an application denial-of-service condition. An attacker could exploit this vulnerability to render the application unresponsive or terminate its execution. Exploitation of thi...

5.5CVSS5.4AI score0.0004EPSS

CVE•added 2024/08/14 3:15 p.m.•40 views

CVE-2024-34135

Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

5.5CVSS5.1AI score0.00078EPSS

CVE•added 2024/08/14 3:15 p.m.•40 views

CVE-2024-34137

Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue requires ...

5.5CVSS5.2AI score0.00036EPSS

CVE•added 2024/11/12 7:15 p.m.•40 views

CVE-2024-47450

Illustrator versions 28.7.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2024/11/12 7:15 p.m.•40 views

CVE-2024-47455

5.5CVSS5.1AI score0.00044EPSS

CVE•added 2024/09/13 9:15 a.m.•39 views

CVE-2024-45111

Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

5.5CVSS5.3AI score0.00083EPSS

CVE•added 2024/11/12 7:15 p.m.•39 views

CVE-2024-47452

7.8CVSS7.9AI score0.00037EPSS

CVE•added 2024/11/12 7:15 p.m.•39 views

CVE-2024-47453

5.5CVSS5.1AI score0.00044EPSS

CVE•added 2024/11/12 7:15 p.m.•38 views

CVE-2024-47451

7.8CVSS7.9AI score0.00037EPSS

CVE•added 2024/11/12 7:15 p.m.•38 views

CVE-2024-47457

Illustrator versions 28.7.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue require...

5.5CVSS5.5AI score0.00031EPSS

CVE•added 2024/09/13 9:15 a.m.•37 views

CVE-2024-43758

Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0005EPSS

CVE•added 2024/08/14 3:15 p.m.•36 views

CVE-2024-34134

5.5CVSS5.9AI score0.00078EPSS