| CVE ID | CVSS3.1 | Exploitable | Vendor | Product | Vulnerability | Date added |
|---|---|---|---|---|---|---|
| CVE-2025-54236 | 9.1 | True | Adobe | Commerce and Magento | Adobe Commerce and Magento Improper Input Validation Vulnerability | 2025-10-24 00:00:00 |
| CVE-2025-54253 | 10.0 | True | Adobe | Experience Manager (AEM) Forms | Adobe Experience Manager Forms Code Execution Vulnerability | 2025-10-15 00:00:00 |
| CVE-2017-3066 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization Vulnerability | 2025-02-24 00:00:00 |
| CVE-2024-20767 | 7.4 | True | Adobe | ColdFusion | Adobe ColdFusion Improper Access Control Vulnerability | 2024-12-16 00:00:00 |
| CVE-2014-0497 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Integer Underflow Vulnerablity | 2024-09-17 00:00:00 |
| CVE-2013-0643 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Incorrect Default Permissions Vulnerability | 2024-09-17 00:00:00 |
| CVE-2013-0648 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Code Execution Vulnerability | 2024-09-17 00:00:00 |
| CVE-2014-0502 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Double Free Vulnerablity | 2024-09-17 00:00:00 |
| CVE-2024-34102 | 9.8 | True | Adobe | Commerce and Magento Open Source | Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability | 2024-07-17 00:00:00 |
| CVE-2023-38203 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability | 2024-01-08 00:00:00 |
| CVE-2023-29300 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability | 2024-01-08 00:00:00 |
| CVE-2023-21608 | 7.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Use-After-Free Vulnerability | 2023-10-10 00:00:00 |
| CVE-2023-26369 | 7.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Out-of-Bounds Write Vulnerability | 2023-09-14 00:00:00 |
| CVE-2023-26359 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability | 2023-08-21 00:00:00 |
| CVE-2023-38205 | 7.5 | True | Adobe | ColdFusion | Adobe ColdFusion Improper Access Control Vulnerability | 2023-07-20 00:00:00 |
| CVE-2023-29298 | 7.5 | True | Adobe | ColdFusion | Adobe ColdFusion Improper Access Control Vulnerability | 2023-07-20 00:00:00 |
| CVE-2023-26360 | 8.6 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability | 2023-03-15 00:00:00 |
| CVE-2007-5659 | 7.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Buffer Overflow Vulnerability | 2022-06-08 00:00:00 |
| CVE-2008-0655 | 8.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Unspecified Vulnerability | 2022-06-08 00:00:00 |
| CVE-2009-1862 | 7.8 | True | Adobe | Acrobat and Reader, Flash Player | Adobe Acrobat and Reader, Flash Player Unspecified Vulnerability | 2022-06-08 00:00:00 |
| CVE-2009-3953 | 8.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability | 2022-06-08 00:00:00 |
| CVE-2009-4324 | 7.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Use-After-Free Vulnerability | 2022-06-08 00:00:00 |
| CVE-2010-1297 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Memory Corruption Vulnerability | 2022-06-08 00:00:00 |
| CVE-2010-2883 | 7.3 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability | 2022-06-08 00:00:00 |
| CVE-2011-0609 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Unspecified Vulnerability | 2022-06-08 00:00:00 |
| CVE-2011-2462 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability | 2022-06-08 00:00:00 |
| CVE-2012-0754 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Memory Corruption Vulnerability | 2022-06-08 00:00:00 |
| CVE-2012-0767 | 6.1 | True | Adobe | Flash Player | Adobe Flash Player Cross-Site Scripting (XSS) Vulnerability | 2022-06-08 00:00:00 |
| CVE-2012-5054 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Integer Overflow Vulnerability | 2022-06-08 00:00:00 |
| CVE-2018-4990 | 8.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Double Free Vulnerability | 2022-06-08 00:00:00 |
| CVE-2014-0546 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Sandbox Bypass Vulnerability | 2022-05-25 00:00:00 |
| CVE-2014-8439 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Dereferenced Pointer Vulnerability | 2022-05-25 00:00:00 |
| CVE-2015-8651 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Integer Overflow Vulnerability | 2022-05-25 00:00:00 |
| CVE-2015-0310 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player ASLR Bypass Vulnerability | 2022-05-25 00:00:00 |
| CVE-2016-0984 | 8.8 | True | Adobe | Flash Player and AIR | Adobe Flash Player and AIR Use-After-Free Vulnerability | 2022-05-25 00:00:00 |
| CVE-2016-1010 | 8.8 | True | Adobe | Flash Player and AIR | Adobe Flash Player and AIR Integer Overflow Vulnerability | 2022-05-25 00:00:00 |
| CVE-2018-5002 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Stack-based Buffer Overflow Vulnerability | 2022-05-23 00:00:00 |
| CVE-2014-9163 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Stack-Based Buffer Overflow Vulnerability | 2022-04-13 00:00:00 |
| CVE-2015-0311 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Remote Code Execution Vulnerability | 2022-04-13 00:00:00 |
| CVE-2015-0313 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-04-13 00:00:00 |
| CVE-2015-3113 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Heap-Based Buffer Overflow Vulnerability | 2022-04-13 00:00:00 |
| CVE-2015-5122 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-04-13 00:00:00 |
| CVE-2015-5123 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-04-13 00:00:00 |
| CVE-2012-2034 | 7.5 | True | Adobe | Flash Player | Adobe Flash Player Memory Corruption Vulnerability | 2022-03-28 00:00:00 |
| CVE-2013-2729 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability | 2022-03-28 00:00:00 |
| CVE-2009-0927 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability | 2022-03-25 00:00:00 |
| CVE-2010-2861 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Directory Traversal Vulnerability | 2022-03-25 00:00:00 |
| CVE-2016-4171 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Remote Code Execution Vulnerability | 2022-03-25 00:00:00 |
| CVE-2016-7892 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-03-25 00:00:00 |
| CVE-2009-3960 | 6.5 | True | Adobe | BlazeDS | Adobe BlazeDS Information Disclosure Vulnerability | 2022-03-07 00:00:00 |
| CVE-2013-0625 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Authentication Bypass Vulnerability | 2022-03-07 00:00:00 |
| CVE-2013-0629 | 7.5 | True | Adobe | ColdFusion | Adobe ColdFusion Directory Traversal Vulnerability | 2022-03-07 00:00:00 |
| CVE-2013-0631 | 7.5 | True | Adobe | ColdFusion | Adobe ColdFusion Information Disclosure Vulnerability | 2022-03-07 00:00:00 |
| CVE-2008-2992 | 7.8 | True | Adobe | Acrobat and Reader | Adobe Reader and Acrobat Input Validation Vulnerability | 2022-03-03 00:00:00 |
| CVE-2010-0188 | 7.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2011-0611 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Remote Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2012-1535 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Arbitrary Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2013-0632 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Authentication Bypass Vulnerability | 2022-03-03 00:00:00 |
| CVE-2013-0640 | 7.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Memory Corruption Vulnerability | 2022-03-03 00:00:00 |
| CVE-2013-0641 | 7.8 | True | Adobe | Reader | Adobe Reader Buffer Overflow Vulnerability | 2022-03-03 00:00:00 |
| CVE-2013-3346 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Memory Corruption Vulnerability | 2022-03-03 00:00:00 |
| CVE-2014-0496 | 8.8 | True | Adobe | Reader and Acrobat | Adobe Reader and Acrobat Use-After-Free Vulnerability | 2022-03-03 00:00:00 |
| CVE-2015-3043 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Memory Corruption Vulnerability | 2022-03-03 00:00:00 |
| CVE-2015-5119 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-03-03 00:00:00 |
| CVE-2015-7645 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Arbitrary Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2016-1019 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Arbitrary Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2016-4117 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Arbitrary Code Execution Vulnerability | 2022-03-03 00:00:00 |
| CVE-2016-7855 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-03-03 00:00:00 |
| CVE-2017-11292 | 8.8 | True | Adobe | Flash Player | Adobe Flash Player Type Confusion Vulnerability | 2022-03-03 00:00:00 |
| CVE-2018-15982 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2022-02-15 00:00:00 |
| CVE-2022-24086 | 9.8 | True | Adobe | Commerce and Magento Open Source | Adobe Commerce and Magento Open Source Improper Input Validation Vulnerability | 2022-02-15 00:00:00 |
| CVE-2018-4878 | 7.8 | True | Adobe | Flash Player | Adobe Flash Player Use-After-Free Vulnerability | 2021-11-03 00:00:00 |
| CVE-2018-15961 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Unrestricted File Upload Vulnerability | 2021-11-03 00:00:00 |
| CVE-2018-4939 | 9.8 | True | Adobe | ColdFusion | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability | 2021-11-03 00:00:00 |
| CVE-2021-28550 | 9.6 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Use-After-Free Vulnerability | 2021-11-03 00:00:00 |
| CVE-2021-21017 | 8.8 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability | 2021-11-03 00:00:00 |
AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.
Copyright AVET INS 1997 - 2026