adobe security advisories
28 threat alerts tracking vulnerabilities and security advisories that affect adobe products.
Vulnios monitors adobe CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent adobe security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2017-16398 — adobe — acrobat, acrobat_dc
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. Th
criticalCVE-2017-16398Critical Vulnerability: CVE-2017-11295 — adobe — dng_converter
An issue was discovered in Adobe DNG Converter 9.12.1 and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-11295Critical Vulnerability: CVE-2017-11302 — adobe — indesign
An issue was discovered in Adobe InDesign 12.1.0 and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-11302Critical Vulnerability: CVE-2017-11303 — adobe — photoshop
An issue was discovered in Adobe Photoshop 18.1.1 (2017.1.1) and earlier versions. An exploitable memory corruption vulnerability exists. Successful exploitation could lead to arbitrary code execution
criticalCVE-2017-11303Critical Vulnerability: CVE-2017-11293 — adobe — acrobat, acrobat_dc
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. An
criticalCVE-2017-11293Critical Vulnerability: CVE-2017-11291 — adobe — connect
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.
criticalCVE-2017-11291Critical Vulnerability: CVE-2017-11304 — adobe — photoshop
An issue was discovered in Adobe Photoshop 18.1.1 (2017.1.1) and earlier versions. An exploitable use-after-free vulnerability exists. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-11304Critical Vulnerability: CVE-2017-11284 — adobe — coldfusion
Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.
criticalCVE-2017-11284Critical Vulnerability: CVE-2017-11283 — adobe — coldfusion
Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.
criticalCVE-2017-11283Critical Vulnerability: CVE-2017-3108 — adobe — experience_manager
Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability.
criticalCVE-2017-3108Critical Vulnerability: CVE-2017-11274 — adobe — digital_editions
Adobe Digital Editions 4.5.4 and earlier has an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-11274Critical Vulnerability: CVE-2017-3096 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the character code mapping module. Successful exploitation could lead to arbitrary code executi
criticalCVE-2017-3096Critical Vulnerability: CVE-2017-3097 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading functions in the installer plugin. A successful
criticalCVE-2017-3097Critical Vulnerability: CVE-2017-3095 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF parsing engine. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-3095Critical Vulnerability: CVE-2017-3092 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of editor control library functions in the insta
criticalCVE-2017-3092Critical Vulnerability: CVE-2017-3086 — adobe — shockwave_player
Adobe Shockwave versions 12.2.8.198 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-3086Critical Vulnerability: CVE-2017-3090 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of browser related library extensions in the ins
criticalCVE-2017-3090Critical Vulnerability: CVE-2017-3089 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF imaging model. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-3089Critical Vulnerability: CVE-2017-3094 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF processing engine. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-3094Critical Vulnerability: CVE-2017-3093 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the bitmap representation module. Successful exploitation could lead to arbitrary code executio
criticalCVE-2017-3093Critical Vulnerability: CVE-2017-3088 — adobe — digital_editions
Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF runtime engine. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-3088Critical Vulnerability: CVE-2017-3098 — adobe — captivate
Adobe Captivate versions 9 and earlier have a remote code execution vulnerability in the quiz reporting feature that could be abused to read and write arbitrary files to the server.
criticalCVE-2017-3098Critical Vulnerability: CVE-2017-3083 — adobe — flash_player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the Primetime SDK functionality related to the profile metadata of the media stream. Successful e
criticalCVE-2017-3083Critical Vulnerability: CVE-2017-3084 — adobe — flash_player
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the advertising metadata functionality. Successful exploitation could lead to arbitrary code exec
criticalCVE-2017-3084Critical Vulnerability: CVE-2017-2989 — adobe — campaign
Adobe Campaign versions Build 8770 and earlier have an input validation bypass that could be exploited to read, write, or delete data from the Campaign database.
criticalCVE-2017-2989Critical Vulnerability: CVE-2017-2973 — adobe — digital_editions
Adobe Digital Editions versions 4.5.3 and earlier have an exploitable heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.
criticalCVE-2017-2973Critical Vulnerability: CVE-2017-2968 — adobe — campaign
Adobe Campaign versions 16.4 Build 8724 and earlier have a code injection vulnerability.
criticalCVE-2017-2968Critical Vulnerability: CVE-2025-54236 — adobe — commerce, commerce_b2b
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this t
criticalCVE-2025-54236
Track adobe exposure across your environment
Vulnios automatically cross-references your asset inventory against new adobe CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan