Adobe Illustrator vulnerabilities
169 known vulnerabilities affecting adobe/illustrator.
Total CVEs
169
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH99MEDIUM56LOW1
Vulnerabilities
Page 3 of 9
CVE-2024-47451HIGHCVSS 7.8fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47451 [HIGH] CWE-787 CVE-2024-47451: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that co
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47450HIGHCVSS 7.8fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47450 [HIGH] CWE-122 CVE-2024-47450: Illustrator versions 28.7.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability t
Illustrator versions 28.7.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-45114HIGHCVSS 7.8fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-45114 [HIGH] CWE-787 CVE-2024-45114: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that co
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47452HIGHCVSS 7.8fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47452 [HIGH] CWE-787 CVE-2024-47452: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that co
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47454MEDIUMCVSS 5.5fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47454 [MEDIUM] CWE-125 CVE-2024-47454: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that cou
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47457MEDIUMCVSS 5.5fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47457 [MEDIUM] CWE-476 CVE-2024-47457: Illustrator versions 28.7.1 and earlier are affected by a NULL Pointer Dereference vulnerability tha
Illustrator versions 28.7.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a mali
cvelistv5nvd
CVE-2024-47453MEDIUMCVSS 5.5fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47453 [MEDIUM] CWE-125 CVE-2024-47453: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that cou
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47455MEDIUMCVSS 5.5fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47455 [MEDIUM] CWE-125 CVE-2024-47455: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that cou
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-47456MEDIUMCVSS 5.5fixed in 28.7.2≤ 28.7.12024-11-12
CVE-2024-47456 [MEDIUM] CWE-125 CVE-2024-47456: Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that cou
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-43758HIGHCVSS 7.8≥ 27.0.0, < 27.9.6≥ 28.0, < 28.7.1+1 more2024-09-13
CVE-2024-43758 [HIGH] CWE-416 CVE-2024-43758: Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that co
Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34121HIGHCVSS 7.8≥ 27.0.0, < 27.9.6≥ 28.0, < 28.7.1+1 more2024-09-13
CVE-2024-34121 [HIGH] CWE-190 CVE-2024-34121: Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vuln
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-41857HIGHCVSS 7.8fixed in 27.9.6≥ 28.0, < 28.7.1+1 more2024-09-13
CVE-2024-41857 [HIGH] CWE-191 CVE-2024-41857: Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparou
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-45111MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.6≥ 28.0, < 28.7.1+1 more2024-09-13
CVE-2024-45111 [MEDIUM] CWE-125 CVE-2024-45111: Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability th
Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-43759MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.6≥ 28.0, < 28.7.1+1 more2024-09-13
CVE-2024-43759 [MEDIUM] CWE-476 CVE-2024-43759: Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerabili
Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a DoS condition. Exploitation of this issue requires user interaction in that a victim must open a malici
cvelistv5nvd
CVE-2024-41856HIGHCVSS 7.8≥ 27.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-41856 [HIGH] CWE-20 CVE-2024-41856: Illustrator versions 28.5, 27.9.4, 28.6, 27.9.5 and earlier are affected by an Improper Input Valida
Illustrator versions 28.5, 27.9.4, 28.6, 27.9.5 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34133HIGHCVSS 7.8≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34133 [HIGH] CWE-787 CVE-2024-34133: Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds write vulnerability t
Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34137MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34137 [MEDIUM] CWE-476 CVE-2024-34137: Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerabili
Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue requires user interaction in that a victim must open a malici
cvelistv5nvd
CVE-2024-34138MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34138 [MEDIUM] CWE-476 CVE-2024-34138: Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerabili
Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-34118MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34118 [MEDIUM] CWE-20 CVE-2024-34118: Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation vulnerabi
Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation vulnerability that could lead to an application denial-of-service condition. An attacker could exploit this vulnerability to render the application unresponsive or terminate its execution. Exploitation of this issue requires user interaction in that a victim mu
cvelistv5nvd
CVE-2024-34135MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34135 [MEDIUM] CWE-125 CVE-2024-34135: Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability th
Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd