Adobe Bridge vulnerabilities
134 known vulnerabilities affecting adobe/bridge.
Total CVEs
134
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH97MEDIUM24LOW10
Vulnerabilities
Page 1 of 7
CVE-2026-21347HIGHCVSS 7.8fixed in 15.1.4≥ 16.0, < 16.0.2+1 more2026-02-10
CVE-2026-21347 [HIGH] CWE-190 CVE-2026-21347: Bridge versions 15.1.3, 16.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnera
Bridge versions 15.1.3, 16.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2026-21346HIGHCVSS 7.8fixed in 15.1.4≥ 16.0, < 16.0.2+1 more2026-02-10
CVE-2026-21346 [HIGH] CWE-787 CVE-2026-21346: Bridge versions 15.1.3, 16.0.1 and earlier are affected by an out-of-bounds write vulnerability that
Bridge versions 15.1.3, 16.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2026-21283HIGHCVSS 7.8fixed in 15.1.3v16.0+1 more2026-01-13
CVE-2026-21283 [HIGH] CWE-122 CVE-2026-21283: Bridge versions 15.1.2, 16.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability
Bridge versions 15.1.2, 16.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-54268HIGHCVSS 7.8fixed in 14.1.9≥ 15.0, < 15.1.2+1 more2025-10-15
CVE-2025-54268 [HIGH] CWE-122 CVE-2025-54268: Bridge versions 14.1.8, 15.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerabilit
Bridge versions 14.1.8, 15.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-54278MEDIUMCVSS 5.5fixed in 14.1.9≥ 15.0, < 15.1.2+1 more2025-10-15
CVE-2025-54278 [MEDIUM] CWE-122 CVE-2025-54278: Bridge versions 14.1.8, 15.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerabilit
Bridge versions 14.1.8, 15.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-43547HIGHCVSS 7.8≥ 14.0.0, < 14.1.7≥ 15.0, < 15.0.4+1 more2025-05-13
CVE-2025-43547 [HIGH] CWE-190 CVE-2025-43547: Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound vulnera
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-43545HIGHCVSS 7.8≥ 14.0.0, < 14.1.7≥ 15.0, < 15.0.4+1 more2025-05-13
CVE-2025-43545 [HIGH] CWE-824 CVE-2025-43545: Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Access of Uninitialized Pointer vulner
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-43546HIGHCVSS 7.8≥ 14.0.0, < 14.1.7≥ 15.0, < 15.0.4+1 more2025-05-13
CVE-2025-43546 [HIGH] CWE-191 CVE-2025-43546: Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Underflow (Wrap or Wraparound)
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2025-27193HIGHCVSS 7.8fixed in 14.1.6≥ 15.0, < 15.0.3+1 more2025-04-08
CVE-2025-27193 [HIGH] CWE-122 CVE-2025-27193: Bridge versions 14.1.5, 15.0.2 and earlier are affected by a Heap-based Buffer Overflow vulnerabilit
Bridge versions 14.1.5, 15.0.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-53955HIGHCVSS 7.8fixed in 14.1.4v15.0+1 more2024-12-10
CVE-2024-53955 [HIGH] CWE-191 CVE-2024-53955: Bridge versions 14.1.3, 15.0 and earlier are affected by an Integer Underflow (Wrap or Wraparound) v
Bridge versions 14.1.3, 15.0 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47458MEDIUMCVSS 5.5≤ 13.0.9≥ 14.0.0, < 14.1.32024-11-12
CVE-2024-47458 [MEDIUM] CWE-476 CVE-2024-47458: Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability
Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this issue requires user interaction in that a victim must open a ma
cvelistv5nvd
CVE-2024-45147MEDIUMCVSS 5.5≤ 13.0.9≥ 14.0.0, < 14.1.32024-11-12
CVE-2024-45147 [MEDIUM] CWE-125 CVE-2024-45147: Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that
Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-41840HIGHCVSS 7.8fixed in 13.0.9≥ 14.0.0, < 14.1.2+1 more2024-08-14
CVE-2024-41840 [HIGH] CWE-787 CVE-2024-41840: Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that
Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-39386HIGHCVSS 7.8fixed in 13.0.9≥ 14.0.0, < 14.1.2+1 more2024-08-14
CVE-2024-39386 [HIGH] CWE-787 CVE-2024-39386: Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that
Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-39387MEDIUMCVSS 5.5fixed in 13.0.9≥ 14.0.0, < 14.1.2+1 more2024-08-14
CVE-2024-39387 [MEDIUM] CWE-125 CVE-2024-39387: Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds read vulnerability that
Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34139HIGHCVSS 7.8fixed in 13.0.8≥ 14.0.0, < 14.1.1+1 more2024-07-09
CVE-2024-34139 [HIGH] CWE-190 CVE-2024-34139: Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound v
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34140MEDIUMCVSS 5.5fixed in 14.0.4≤ 14.12024-07-09
CVE-2024-34140 [MEDIUM] CWE-125 CVE-2024-34140: Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an out-of-bounds read vulnerability
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20771MEDIUMCVSS 5.5fixed in 13.0.7≥ 14.0.0, < 14.0.3+1 more2024-04-11
CVE-2024-20771 [MEDIUM] CWE-125 CVE-2024-20771: Bridge versions 13.0.6, 14.0.2 and earlier are affected by an out-of-bounds read vulnerability that
Bridge versions 13.0.6, 14.0.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20756HIGHCVSS 7.8fixed in 13.0.6≥ 14.0.0, < 14.0.2+1 more2024-03-18
CVE-2024-20756 [HIGH] CWE-787 CVE-2024-20756: Bridge versions 13.0.5, 14.0.1 and earlier are affected by an out-of-bounds write vulnerability that
Bridge versions 13.0.5, 14.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20755HIGHCVSS 7.8fixed in 13.0.6≥ 14.0.0, < 14.0.2+1 more2024-03-18
CVE-2024-20755 [HIGH] CWE-122 CVE-2024-20755: Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerabilit
Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
1 / 7Next →