Adobe Illustrator vulnerabilities
173 known vulnerabilities affecting adobe/illustrator.
Total CVEs
173
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH101MEDIUM58LOW1
Vulnerabilities
Page 8 of 9
CVE-2021-21054HIGHCVSS 7.8≤ 25.1≥ unspecified, ≤ 25.12021-02-11
CVE-2021-21054 [HIGH] CWE-787 CVE-2021-21054: Adobe Illustrator version 25.1 (and earlier) is affected by an Out-of-bounds Write vulnerability whe
Adobe Illustrator version 25.1 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious f
nvd
CVE-2021-21007HIGHCVSS 7.0≤ 25.0v25.0 and earlier2021-01-13
CVE-2021-21007 [HIGH] CWE-427 CVE-2021-21007: Adobe Illustrator version 25.0 (and earlier) is affected by an uncontrolled search path element that
Adobe Illustrator version 25.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2020-24411HIGHCVSS 7.8≤ 24.2≥ unspecified, ≤ 24.22020-10-20
CVE-2020-24411 [HIGH] CWE-787 CVE-2020-24411: Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds write vulnerability whe
Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds write vulnerability when handling crafted PDF files. This could result in a write past the end of an allocated memory structure, potentially resulting in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24412HIGHCVSS 7.8≤ 24.1.2≥ unspecified, ≤ 24.1.22020-10-20
CVE-2020-24412 [HIGH] CWE-788 CVE-2020-24412: Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that
Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24413HIGHCVSS 7.8≤ 24.1.2≥ unspecified, ≤ 24.1.22020-10-20
CVE-2020-24413 [HIGH] CWE-788 CVE-2020-24413: Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that
Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24410HIGHCVSS 7.8≤ 24.2≥ unspecified, ≤ 24.22020-10-20
CVE-2020-24410 [HIGH] CWE-125 CVE-2020-24410: Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds read vulnerability when
Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing crafted PDF files. This could result in a read past the end of an allocated memory structure, potentially resulting in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24409HIGHCVSS 7.8≤ 24.2≥ unspecified, ≤ 24.22020-10-20
CVE-2020-24409 [HIGH] CWE-125 CVE-2020-24409: Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds read vulnerability when
Adobe Illustrator version 24.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing crafted PDF files. This could result in a read past the end of an allocated memory structure, potentially resulting in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24415HIGHCVSS 7.8≤ 24.2≥ unspecified, ≤ 24.1.22020-10-20
CVE-2020-24415 [HIGH] CWE-788 CVE-2020-24415: Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that
Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-24414HIGHCVSS 7.8≤ 24.2≥ unspecified, ≤ 24.1.22020-10-20
CVE-2020-24414 [HIGH] CWE-788 CVE-2020-24414: Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that
Adobe Illustrator version 24.1.2 (and earlier) is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit.
nvd
CVE-2020-9572HIGHCVSS 7.8≤ 24.0.22020-06-26
CVE-2020-9572 [HIGH] CWE-787 CVE-2020-9572: Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2020-9573HIGHCVSS 7.8≤ 24.0.22020-06-26
CVE-2020-9573 [HIGH] CWE-787 CVE-2020-9573: Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2020-9571HIGHCVSS 7.8≤ 24.0.22020-06-26
CVE-2020-9571 [HIGH] CWE-787 CVE-2020-9571: Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
nvd
CVE-2020-9570HIGHCVSS 7.8≤ 24.0.22020-06-26
CVE-2020-9570 [HIGH] CWE-787 CVE-2020-9570: Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9574HIGHCVSS 7.8≤ 24.0.22020-06-26
CVE-2020-9574 [HIGH] CWE-787 CVE-2020-9574: Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.0.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9575HIGHCVSS 7.8≤ 24.1.22020-06-25
CVE-2020-9575 [HIGH] CWE-787 CVE-2020-9575: Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9642HIGHCVSS 7.8≤ 24.1.22020-06-25
CVE-2020-9642 [HIGH] CWE-119 CVE-2020-9642: Adobe Illustrator versions 24.1.2 and earlier have a buffer errors vulnerability. Successful exploit
Adobe Illustrator versions 24.1.2 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9640HIGHCVSS 7.8≤ 24.1.22020-06-25
CVE-2020-9640 [HIGH] CWE-787 CVE-2020-9640: Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9641HIGHCVSS 7.8≤ 24.1.22020-06-25
CVE-2020-9641 [HIGH] CWE-787 CVE-2020-9641: Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2020-9639HIGHCVSS 7.8≤ 24.1.22020-06-25
CVE-2020-9639 [HIGH] CWE-787 CVE-2020-9639: Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exp
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
nvd
CVE-2014-0513CRITICALCVSS 10.0≤ 16.0.4v16.0.1+4 more2014-05-14
CVE-2014-0513 [CRITICAL] CWE-119 CVE-2014-0513: Stack-based buffer overflow in Adobe Illustrator CS6 before 16.0.5 and 16.2.x before 16.2.2 allows r
Stack-based buffer overflow in Adobe Illustrator CS6 before 16.0.5 and 16.2.x before 16.2.2 allows remote attackers to execute arbitrary code via unspecified vectors.
nvd