← Back to News Iceland Security Dashboard Browse all tags

adobe

Adobe

experience_manager 38flash-player 33flash player 33coldfusion 30commerce 15acrobat and reader 13reader-and-acrobat 11reader and acrobat 8commerce_b2b 7acrobat-reader 5acrobat-and-reader 5reader 2flash-player-and-air 2flash player and air 2commerce and magento open source 2blazeds 2acrobat 2experience-manager 1experience manager (aem) forms 1commerce and magento 1

CVEs tagged with this vendor (80)

CVE-2026-34621 🚨 CVSS 8.6 Acrobat and Reader

Adobe Acrobat Reader versions 24.001.30356, 26.001.21367, and earlier are affected by a Prototype Pollution vulnerability (CWE-1321) that allows for arbitrary c…

CVE-2007-5659 🚨 Acrobat and Reader

CVE-2007-5659 is a memory corruption vulnerability (CWE-120) affecting Adobe Reader and Acrobat versions 8.1.1 and earlier, allowing remote code execution via c…

CVE-2008-0655 🚨 Acrobat and Reader

CVE-2008-0655 affects Adobe Reader and Acrobat versions prior to 8.1.2, involving multiple unspecified vulnerabilities with unknown impact and attack vectors. T…

CVE-2008-2992 🚨 Acrobat and Reader

CVE-2008-2992 is a stack-based buffer overflow in Adobe Acrobat and Reader versions 8.1.2 and earlier, classified under CWE-787. The vulnerability allows remote…

CVE-2009-0927 🚨 Reader and Acrobat

CVE-2009-0927 is a stack-based buffer overflow in Adobe Reader and Adobe Acrobat versions prior to 9.1, 8.1.3, and 7.1.1, allowing remote code execution via the…

CVE-2009-1862 🚨 Acrobat and Reader, Flash Player

CVE-2009-1862 is a memory corruption vulnerability in Adobe Reader/Acrobat 9.x through 9.1.2 and Adobe Flash Player 9.x through 10.0.22.87 that allows remote at…

CVE-2009-3459 🚨 Acrobat and Reader

CVE-2009-3459 is a heap-based buffer overflow in Adobe Reader and Acrobat versions 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, allowing remote code …

CVE-2009-3953 🚨 Acrobat and Reader

CVE-2009-3953 is a remote code execution vulnerability in Adobe Reader and Acrobat versions 9.x prior to 9.3, 8.x prior to 8.2, and 7.x prior to 7.1.4 on Window…

CVE-2009-3960 🚨 BlazeDS

CVE-2009-3960 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-09-07. …

CVE-2009-4324 🚨 Acrobat and Reader

CVE-2009-4324 is a high-severity memory corruption vulnerability (CWE-416) affecting Adobe Acrobat and Reader versions 8.x before 8.2 and 9.x before 9.3 on Wind…

CVE-2010-0188 🚨 Reader and Acrobat

CVE-2010-0188 affects Adobe Reader and Acrobat versions 8.x prior to 8.2.1 and 9.x prior to 9.3.1, allowing attackers to cause a denial of service or potentiall…

CVE-2010-1297 🚨 Flash Player

CVE-2010-1297 is a critical memory corruption vulnerability in Adobe Flash Player, Adobe AIR, and Adobe Reader/Acrobat versions prior to 9.0.277.0, 2.0.2.12610,…

CVE-2010-2861 🚨 ColdFusion

CVE-2010-2861 is a critical path traversal vulnerability in Adobe ColdFusion 9.0.1 and earlier, allowing remote attackers to read arbitrary files via the locale…

CVE-2010-2883 🚨 Acrobat and Reader

CVE-2010-2883 is a stack-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.4 and 8.x before 8.2.5 on Windows and Mac OS X, caused by a long field i…

CVE-2011-0609 🚨 Flash Player

CVE-2011-0609 is a high-severity vulnerability in Adobe Flash Player and related Adobe products that allows remote attackers to execute arbitrary code or cause …

CVE-2011-0611 🚨 Flash Player

CVE-2011-0611 is an actively exploited vulnerability in Adobe Flash Player, listed on CISA's Known Exploited Vulnerabilities catalog with a federal remediation …

CVE-2011-2462 🚨 Reader and Acrobat

CVE-2011-2462 is a critical memory corruption vulnerability in Adobe Reader and Acrobat versions 10.1.1 and earlier on Windows and Mac OS X, and Adobe Reader 9.…

CVE-2012-0754 🚨 Flash Player

CVE-2012-0754 is a memory corruption vulnerability in Adobe Flash Player affecting versions before 10.3.183.15, 11.x before 11.1.102.62, and specific Android bu…

CVE-2012-0767 🚨 Flash Player

CVE-2012-0767 is a cross-site scripting (XSS) vulnerability in Adobe Flash Player affecting versions prior to 10.3.183.15, 11.1.102.62, and various Android buil…

CVE-2012-1535 🚨 Flash Player

CVE-2012-1535 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-03-24. …

CVE-2012-2034 🚨 Flash Player

CVE-2012-2034 is an actively exploited vulnerability in Adobe Flash Player listed on CISA's Known Exploited Vulnerabilities catalog with a federal remediation d…

CVE-2012-5054 🚨 Flash Player

CVE-2012-5054 is a high-severity integer overflow vulnerability (CWE-190) in Adobe Flash Player versions prior to 11.4.402.265, allowing remote attackers to exe…

CVE-2013-0625 🚨 ColdFusion

CVE-2013-0625 is a critical authentication bypass vulnerability in Adobe ColdFusion versions 9.0, 9.0.1, and 9.0.2 when no password is configured. It allows rem…

CVE-2013-0629 🚨 ColdFusion

CVE-2013-0629 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-09-07. …

CVE-2013-0631 🚨 ColdFusion

CVE-2013-0631 is an information disclosure vulnerability in Adobe ColdFusion versions 9.0, 9.0.1, and 9.0.2 that allows attackers to obtain sensitive informatio…

CVE-2013-0632 🚨 ColdFusion

CVE-2013-0632 is a critical authentication bypass vulnerability in Adobe ColdFusion versions 9.0, 9.0.1, 9.0.2, and 10, classified under CWE-276. It allows remo…

CVE-2013-0640 🚨 Reader and Acrobat

CVE-2013-0640 is a memory corruption vulnerability in Adobe Reader and Acrobat versions 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 that allow…

CVE-2013-0641 🚨 Reader

CVE-2013-0641 is a vulnerability in Adobe Reader that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild. T…

CVE-2013-0643 🚨 Flash Player

CVE-2013-0643 is a privilege restriction flaw in Adobe Flash Player versions prior to 10.3.183.67 and 11.x prior to 11.6.602.171 on Windows and Mac OS X, and pr…

CVE-2013-0648 🚨 Flash Player

CVE-2013-0648 is a remote code execution vulnerability in Adobe Flash Player affecting versions before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and M…

CVE-2013-2729 🚨 Reader and Acrobat

CVE-2013-2729 is a critical integer overflow vulnerability (CWE-190) in Adobe Reader and Acrobat versions 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before …

CVE-2013-3346 🚨 Reader and Acrobat

CVE-2013-3346 is a critical memory corruption vulnerability in Adobe Reader and Acrobat versions 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03. …

CVE-2014-0496 🚨 Reader and Acrobat

CVE-2014-0496 is a high-severity memory corruption vulnerability (CWE-416) affecting Adobe Reader and Acrobat versions 10.x prior to 10.1.9 and 11.x prior to 11…

CVE-2014-0497 🚨 Flash Player

CVE-2014-0497 is a critical remote code execution vulnerability in Adobe Flash Player affecting versions before 11.7.700.261, 11.8.x through 12.0.x before 12.0.…

CVE-2014-0502 🚨 Flash Player

CVE-2014-0502 is a memory corruption vulnerability (CWE-415) in Adobe Flash Player versions before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70, as w…

CVE-2014-0546 🚨 Reader and Acrobat

CVE-2014-0546 is a critical vulnerability in Adobe Reader and Acrobat versions 10.x before 10.1.11 and 11.x before 11.0.08 on Windows. It allows attackers to by…

CVE-2014-8439 🚨 Flash Player

CVE-2014-8439 is a critical vulnerability in Adobe Flash Player and Adobe AIR affecting versions prior to 13.0.0.258, 14.x/15.x prior to 15.0.0.239, and Linux v…

CVE-2014-9163 🚨 Flash Player

CVE-2014-9163 is a stack-based buffer overflow in Adobe Flash Player versions before 13.0.0.259, 14.x, 15.x before 15.0.0.246, and Linux versions before 11.2.20…

CVE-2015-0310 🚨 Flash Player

CVE-2015-0310 is a high-severity vulnerability in Adobe Flash Player affecting versions before 13.0.0.262, 14.x-16.x before 16.0.0.287 on Windows and OS X, and …

CVE-2015-0311 🚨 Flash Player

CVE-2015-0311 is a critical remote code execution vulnerability in Adobe Flash Player versions through 13.0.0.262, 14.x, 15.x, 16.x through 16.0.0.287 on Window…

CVE-2015-0313 🚨 Flash Player

CVE-2015-0313 is a critical use-after-free vulnerability (CWE-416) in Adobe Flash Player versions before 13.0.0.269, 14.x through 16.x before 16.0.0.305 on Wind…

CVE-2015-3043 🚨 Flash Player

CVE-2015-3043 is a critical memory corruption vulnerability in Adobe Flash Player affecting versions before 13.0.0.281, 14.x through 17.x before 17.0.0.169 on W…

CVE-2015-3113 🚨 Flash Player

CVE-2015-3113 is a critical heap-based buffer overflow vulnerability in Adobe Flash Player affecting versions before 13.0.0.296, 14.x through 18.x before 18.0.0…

CVE-2015-5119 🚨 Flash Player

CVE-2015-5119 is an actively exploited vulnerability in Adobe Flash Player, listed on CISA's Known Exploited Vulnerabilities catalog with a federal remediation …

CVE-2015-5122 🚨 Flash Player

CVE-2015-5122 is a critical use-after-free vulnerability (CWE-416) in Adobe Flash Player versions 11.x through 18.0.0.204 across Windows, OS X, and Linux platfo…

CVE-2015-5123 🚨 Flash Player

CVE-2015-5123 is a critical use-after-free vulnerability in Adobe Flash Player versions 11.x through 18.0.0.204 across Windows, OS X, and Linux platforms, allow…

CVE-2015-7645 🚨 Flash Player

CVE-2015-7645 is a remote code execution vulnerability in Adobe Flash Player versions 18.x through 18.0.0.252, 19.x through 19.0.0.207 on Windows and OS X, and …

CVE-2015-8651 🚨 Flash Player

CVE-2015-8651 is a high-severity integer overflow vulnerability (CWE-190) in Adobe Flash Player versions before 18.0.0.324, 19.x, and 20.x before 20.0.0.267, as…

CVE-2016-0984 🚨 Flash Player and AIR

CVE-2016-0984 is a high-severity use-after-free memory corruption vulnerability in Adobe Flash Player and Adobe AIR across Windows, OS X, and Linux platforms, a…

CVE-2016-1010 🚨 Flash Player and AIR

CVE-2016-1010 is a high-severity integer overflow vulnerability (CWE-190) in Adobe Flash Player and Adobe AIR across multiple versions on Windows, OS X, and Lin…

CVE-2016-1019 🚨 Flash Player

CVE-2016-1019 is a vulnerability in Adobe Flash Player that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the w…

CVE-2016-4117 🚨 Flash Player

CVE-2016-4117 is a critical remote code execution vulnerability in Adobe Flash Player versions 21.0.0.226 and earlier, exploited in the wild as of May 2016. The…

CVE-2016-4171 🚨 Flash Player

CVE-2016-4171 is a critical remote code execution vulnerability in Adobe Flash Player versions 21.0.0.242 and earlier, allowing attackers to execute arbitrary c…

CVE-2016-7855 🚨 Flash Player

CVE-2016-7855 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-03-24. …

CVE-2016-7892 🚨 Flash Player

CVE-2016-7892 is a high-severity use-after-free vulnerability in Adobe Flash Player versions 23.0.0.207 and earlier, and 11.2.202.644 and earlier, allowing arbi…

CVE-2017-11292 🚨 Flash Player

CVE-2017-11292 is a vulnerability in Adobe Flash Player that is actively exploited in the wild and listed on CISA's Known Exploited Vulnerabilities catalog. The…

CVE-2017-3066 🚨 ColdFusion

CVE-2017-3066 is a critical Java deserialization vulnerability (CWE-502) in the Apache BlazeDS library affecting Adobe ColdFusion 2016 Update 3 and earlier, Col…

CVE-2018-15961 🚨 ColdFusion

CVE-2018-15961 is a vulnerability in Adobe ColdFusion that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wi…

CVE-2018-15982 🚨 Flash Player

CVE-2018-15982 is a use-after-free memory corruption vulnerability in Adobe Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier, which can …

CVE-2018-4878 🚨 Flash Player

CVE-2018-4878 is a vulnerability in Adobe Flash Player that is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild. The v…

CVE-2018-4939 🚨 ColdFusion

CVE-2018-4939 is a vulnerability in Adobe ColdFusion that has been added to CISA's Known Exploited Vulnerabilities catalog as of November 3, 2021. The vulnerabi…

CVE-2018-4990 🚨 Acrobat and Reader

CVE-2018-4990 is a memory corruption vulnerability (CWE-415) affecting Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier,…

CVE-2018-5002 🚨 Flash Player

CVE-2018-5002 is a high-severity memory corruption vulnerability affecting Adobe Flash Player versions 29.0.0.171 and earlier, specifically involving stack-base…

CVE-2020-9715 🚨 Acrobat

CVE-2020-9715 is a use-after-free vulnerability (CWE-416) affecting Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171…

CVE-2021-21017 🚨 Acrobat and Reader

Adobe Acrobat Reader DC versions 2020.013.20074 and earlier, 2020.001.30018 and earlier, and 2017.011.30188 and earlier are affected by a heap-based buffer over…

CVE-2021-28550 🚨 Acrobat and Reader

Adobe Acrobat Reader DC versions prior to 2021.001.20150, 2020.001.30020, and 2017.011.30194 are affected by a Use After Free vulnerability (CWE-416) allowing a…

CVE-2022-24086 🚨 Commerce and Magento Open Source

CVE-2022-24086 is a critical improper input validation vulnerability in Adobe Commerce versions 2.4.3-p1 and earlier, and 2.3.7-p2 and earlier, allowing arbitra…

CVE-2023-21608 🚨 Acrobat and Reader

CVE-2023-21608 is a high-severity (CVSS 7.8) Use After Free vulnerability (CWE-416) affecting Adobe Acrobat Reader versions 22.003.20282 and earlier, as well as…

CVE-2023-26359 🚨 ColdFusion

Adobe ColdFusion versions 2018 Update 15 and earlier, as well as 2021 Update 5 and earlier, contain a critical deserialization of untrusted data vulnerability (…

CVE-2023-26360 🚨 ColdFusion

CVE-2023-26360 is a high-severity Improper Access Control vulnerability (CWE-284) affecting Adobe ColdFusion versions 2018 Update 15 and earlier, as well as 202…

CVE-2023-26369 🚨 Acrobat and Reader

Adobe Acrobat Reader versions 23.003.20284 and earlier, as well as 20.005.30516 and earlier, are affected by an out-of-bounds write vulnerability (CWE-787) that…

CVE-2023-29298 🚨 ColdFusion

Adobe ColdFusion versions 2018u16 and earlier, 2021u6 and earlier, and 2023.0.0.330468 and earlier are affected by an Improper Access Control vulnerability (CWE…

CVE-2023-29300 🚨 ColdFusion

CVE-2023-29300 is a critical deserialization vulnerability in Adobe ColdFusion versions 2018u16 and earlier, 2021u6 and earlier, and 2023.0.0.330468 and earlier…

CVE-2023-38203 🚨 ColdFusion

Adobe ColdFusion versions 2018u17 and earlier, 2021u7 and earlier, and 2023u1 and earlier contain a critical deserialization of untrusted data vulnerability (CW…

CVE-2023-38205 🚨 ColdFusion

Adobe ColdFusion versions 2018u18 and earlier, 2021u8 and earlier, and 2023u2 and earlier are affected by an Improper Access Control vulnerability (CWE-284) all…

CVE-2024-20767 🚨 ColdFusion

Adobe ColdFusion versions 2023.6, 2021.12, and earlier are affected by an Improper Access Control vulnerability (CWE-284) allowing arbitrary file system read. T…

CVE-2024-34102 🚨 Commerce and Magento Open Source

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8, and earlier are affected by a critical XXE vulnerability (CWE-611) allowing arbitrary code executio…

CVE-2025-54236 🚨 Commerce and Magento

Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability…

CVE-2025-54253 🚨 Experience Manager (AEM) Forms

Adobe Experience Manager versions 6.5.23 and earlier are affected by a critical misconfiguration vulnerability (CWE-863) that allows arbitrary code execution wi…

CVE-2026-21290 CVSS 8.7 commerce_b2b

Articles tagged with Adobe (30)

NCSC-2026-0154 [1.00] [M/H] Kwetsbaarheden verholpen in Adobe Premiere Pro

NCSC Netherlands · 2026-05-13

NCSC-2026-0153 [1.00] [M/H] Kwetsbaarheden verholpen in Adobe After Effects

NCSC Netherlands · 2026-05-13

NCSC-2026-0152 [1.00] [M/H] Kwetsbaarheden verholpen in Adobe Commerce

NCSC Netherlands · 2026-05-13

NCSC-2026-0151 [1.00] [M/H] Kwetsbaarheden verholpen in Adobe Connect

NCSC Netherlands · 2026-05-13

NCSC-2026-0150 [1.00] [M/H] Kwetsbaarheden verholpen in Adobe Illustrator

NCSC Netherlands · 2026-05-13

Adobe Monthly Security Update (May 2026)

HKCERT · 2026-05-13

Multiples vulnérabilités dans les produits Adobe (13 mai 2026)

CERT-FR (ANSSI) · 2026-05-13

Microsoft and Adobe Patch Tuesday, May 2026 Security Update Review

Qualys Research · 2026-05-12

Adobe Patches 52 Vulnerabilities in 10 Products

SecurityWeek · 2026-05-12

CVE-2026-34621: Adobe Acrobat Reader zero-day was on VirusTotal for 136 days before Adobe named it a CVE

Reddit r/netsec · 2026-04-23

CVE-2026-34621 PoC isn't a scanner, it's a campaign weaponizer with 62 pre-authenticated Brazilian fintech targets

Reddit r/netsec · 2026-04-18

Adobe Monthly Security Update (April 2026)

HKCERT · 2026-04-15

Multiples vulnérabilités dans les produits Adobe (15 avril 2026)

CERT-FR (ANSSI) · 2026-04-15

April 2026 Patch Tuesday

Ivanti Security · 2026-04-14

Adobe Patches 55 Vulnerabilities Across 11 Products

SecurityWeek · 2026-04-14

[UPDATE] [hoch] Adobe Acrobat und Acrobat Reader: Mehrere Schwachstellen

BSI Germany · 2026-04-14

Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw

BleepingComputer · 2026-04-13

Vulnérabilité dans Adobe Acrobat (13 avril 2026)

CERT-FR (ANSSI) · 2026-04-13

Adobe Patches Reader Zero-Day Exploited for Months

SecurityWeek · 2026-04-12

Adobe Reader zero-day vulnerability in active exploitation

Sophos News · 2026-04-09

Adobe secretly modifies your hosts file for the stupidest reason

OSnews · 2026-04-05

A threat actor who goes by the name "Mr. Raccoon" has claimed to hack Adobe support via 3rd party Indian BPO firm

Reddit r/netsec · 2026-04-03

[NEU] [mittel] Adobe Acrobat DC: Mehrere Schwachstellen

BSI Germany · 2026-03-11

Multiples vulnérabilités dans les produits Adobe (11 mars 2026)

CERT-FR (ANSSI) · 2026-03-11

March 2026 Patch Tuesday

Ivanti Security · 2026-03-10

Adobe Patches 80 Vulnerabilities Across Eight Products

SecurityWeek · 2026-03-10

[NEU] [mittel] Adobe Creative Cloud Applikationen: Mehrere Schwachstellen

BSI Germany · 2026-02-11

February 2026 Security Patch Report: Microsoft, SAP, Intel, Adobe, and 60+ Vendors Address Critical Vulnerabilities in OS, Cloud, and Network Platforms

Web Discovery · 2026-02-11

Adobe Monthly Security Update (February 2026)

HKCERT · 2026-02-11

Adobe's Major Security Updates for Creative Cloud Suite

Web Discovery · 2026-02-10