Vulnerabilities > Adobe > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-11 | CVE-2025-27177 | Heap-based Buffer Overflow vulnerability in Adobe Indesign InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-03-11 | CVE-2025-27178 | Out-of-bounds Write vulnerability in Adobe Indesign InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-21156 | Integer Underflow (Wrap or Wraparound) vulnerability in Adobe Incopy InCopy versions 20.0, 19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-21159 | Use After Free vulnerability in Adobe Illustrator 29.0/29.0.1/29.1 Illustrator versions 29.1, 28.7.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-21160 | Integer Underflow (Wrap or Wraparound) vulnerability in Adobe Illustrator 29.0/29.0.1/29.1 Illustrator versions 29.1, 28.7.3 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-21161 | Out-of-bounds Write vulnerability in Adobe Substance 3D Designer Substance3D - Designer versions 14.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-21163 | Out-of-bounds Write vulnerability in Adobe Illustrator 29.0/29.0.1/29.1 Illustrator versions 29.1, 28.7.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-02-11 | CVE-2025-24406 | Path Traversal vulnerability in Adobe Commerce Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to a security feature bypass. | 7.5 |
| 2025-02-11 | CVE-2025-24407 | Incorrect Authorization vulnerability in Adobe Commerce B2B Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. | 7.1 |
| 2025-02-11 | CVE-2025-24409 | Incorrect Authorization vulnerability in Adobe Commerce Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. | 8.2 |