Adobe Illustrator vulnerabilities
169 known vulnerabilities affecting adobe/illustrator.
Total CVEs
169
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH99MEDIUM56LOW1
Vulnerabilities
Page 4 of 9
CVE-2024-34136MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34136 [MEDIUM] CWE-476 CVE-2024-34136: Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerabili
Illustrator versions 28.5, 27.9.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-34134MEDIUMCVSS 5.5≥ 27.0.0, < 27.9.5≥ 28.0, < 28.6+1 more2024-08-14
CVE-2024-34134 [MEDIUM] CWE-125 CVE-2024-34134: Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability th
Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20792HIGHCVSS 7.8fixed in 27.9.4≥ 28.0, < 28.5+1 more2024-05-16
CVE-2024-20792 [HIGH] CWE-416 CVE-2024-20792: Illustrator versions 28.4, 27.9.3 and earlier are affected by a Use After Free vulnerability that co
Illustrator versions 28.4, 27.9.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20791HIGHCVSS 7.8fixed in 27.9.4≥ 28.0, < 28.5+1 more2024-05-16
CVE-2024-20791 [HIGH] CWE-125 CVE-2024-20791: Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability wh
Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction
cvelistv5nvd
CVE-2024-20793MEDIUMCVSS 5.5fixed in 27.9.4≥ 28.0, < 28.5+1 more2024-05-16
CVE-2024-20793 [MEDIUM] CWE-125 CVE-2024-20793: Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability th
Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30271HIGHCVSS 7.8fixed in 27.9.3≥ 28.0, < 28.4+1 more2024-04-11
CVE-2024-30271 [HIGH] CWE-787 CVE-2024-30271: Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability t
Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30273HIGHCVSS 7.8fixed in 27.9.3≥ 28.0, < 28.4+1 more2024-04-11
CVE-2024-30273 [HIGH] CWE-121 CVE-2024-30273: Illustrator versions 28.3, 27.9.2 and earlier are affected by a Stack-based Buffer Overflow vulnerab
Illustrator versions 28.3, 27.9.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30272HIGHCVSS 7.8fixed in 27.9.3≥ 28.0, < 28.4+1 more2024-04-11
CVE-2024-30272 [HIGH] CWE-787 CVE-2024-30272: Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability t
Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-20798MEDIUMCVSS 5.5fixed in 27.9.3≥ 28.0, < 28.4+1 more2024-04-11
CVE-2024-20798 [MEDIUM] CWE-125 CVE-2024-20798: Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability th
Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-47075HIGHCVSS 7.8≥ 27.0, ≤ 27.9v28.0+1 more2023-12-13
CVE-2023-47075 [HIGH] CWE-416 CVE-2023-47075: Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by a Use After Fre
Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-47074HIGHCVSS 7.8≥ 27.0, ≤ 27.9v28.0+1 more2023-12-13
CVE-2023-47074 [HIGH] CWE-125 CVE-2023-47074: Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by an out-of-bound
Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue re
cvelistv5nvd
CVE-2023-47063HIGHCVSS 7.8≥ 27.0, ≤ 27.9v28.0+1 more2023-12-13
CVE-2023-47063 [HIGH] CWE-787 CVE-2023-47063: Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by an out-of-bound
Adobe Illustrator versions 28.0 (and earlier) and 27.9 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30645HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30645 [HIGH] CWE-787 CVE-2022-30645: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30638HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30638 [HIGH] CWE-787 CVE-2022-30638: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30643HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30643 [HIGH] CWE-787 CVE-2022-30643: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30640HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30640 [HIGH] CWE-787 CVE-2022-30640: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30637HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30637 [HIGH] CWE-787 CVE-2022-30637: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30639HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30639 [HIGH] CWE-787 CVE-2022-30639: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30642HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30642 [HIGH] CWE-787 CVE-2022-30642: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-30646HIGHCVSS 7.8≤ 25.4.5≥ 26.0, ≤ 26.0.22023-09-07
CVE-2022-30646 [HIGH] CWE-787 CVE-2022-30646: Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-b
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd