Vulnerabilidades em Adobe

4.483 resultados
Análise Vexday

Com 4.472 CVEs catalogadas e 237 surgidas nos últimos 90 dias, a superfície de ataque do portfólio Adobe apresenta volume expressivo e ritmo contínuo de descobertas. A taxa de exploração ativa — 18 entradas no CISA KEV — está em linha com a média geral do catálogo, mas o EPSS de 0,9999 associado à CVE-2024-34102 indica probabilidade máxima de exploração para essa vulnerabilidade específica, exigindo atenção imediata de equipes de resposta. O tipo de falha mais comum é CWE-79 (Cross-Site Scripting), o que sugere fragilidades persistentes na sanitização de entrada em componentes voltados à renderização de conteúdo. A existência de 30 CVEs com prova de conceito pública, combinada a 105 de severidade crítica, reforça a necessidade de priorização rigorosa no ciclo de patching para produtos Adobe em ambientes expostos.

CVE-2021-21041HIGHAcrobat Reader DC Use-After-Free Vulnerability Could Lead To Arbitrary Code ExecutionEPSS 3.0%CVE-2021-21040HIGHAcrobat Reader DC Use-After-Free Vulnerability Could Lead To Arbitrary Code ExecutionEPSS 3.0%CVE-2020-24422HIGHUncontrolled Search Path in Creative Cloud Desktop ApplicationEPSS 3.0%CVE-2023-26397MEDIUM[ZS-VR-22-112] Adobe Acrobat Out-of-bounds Read Memory leakEPSS 2.9%CVE-2020-9708MEDIUMGHSL-2020-133: Insufficient validation of user input in resolveRepositoryPath functionEPSS 2.9%CVE-2020-9642Adobe Illustrator versions 24.1.2 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execuEPSS 2.9%CVE-2021-21047HIGHAdobe Photoshop Out-Of-Bounds Write Vulnerability Could Lead To Remote Code ExecutionEPSS 2.9%CVE-2021-28622HIGHAdobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 2.9%CVE-2026-27307LOWColdFusion | Uncontrolled Resource Consumption (CWE-400)EPSS 2.9%CVE-2023-29303MEDIUMZDI-CAN-20970: Adobe Acrobat Reader DC AcroForm Annotation Use-After-Free Information Disclosure VulnerabilityEPSS 2.9%CVE-2021-36028CRITICALMagento Commerce XML Injection Vulnerability Could Lead To Remote Code ExecutionEPSS 2.9%CVE-2021-36024CRITICALMagento Commerce Improper Neutralization of Special Elements Used In A CommandEPSS 2.9%CVE-2019-8207Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8168Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8182Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8185Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8184Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8193Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8202Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%CVE-2019-8194Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and eEPSS 2.9%