|
1971
|
7.8 |
HIGH
Local
|
adobe
|
substance_3d_designer
|
Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation …
|
CWE-787
Out-of-bounds Write
|
CVE-2026-34682
|
2026-05-14 04:40 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1972
|
7.8 |
HIGH
Local
|
adobe
|
substance_3d_designer
|
Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation …
|
CWE-787
Out-of-bounds Write
|
CVE-2026-34681
|
2026-05-14 04:40 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1973
|
6.3 |
MEDIUM
Local
|
adobe
|
substance_3d_designer
|
Substance3D - Designer versions 15.1.0 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file sy…
|
CWE-22
Path Traversal
|
CVE-2026-34664
|
2026-05-14 04:40 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1974
|
9.3 |
CRITICAL
Network
|
adobe
|
connect_desktop_application
|
Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. An …
|
CWE-863
Incorrect Authorization
|
CVE-2026-34660
|
2026-05-14 04:39 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1975
|
9.6 |
CRITICAL
Network
|
adobe
|
connect_desktop_application
|
Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current …
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-34659
|
2026-05-14 04:38 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1976
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-21 and 6.9.13-46, a malicious MIFF file could trigger an overflow when a user opens it in…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-42050
|
2026-05-14 04:38 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1977
|
7.8 |
HIGH
Local
|
adobe
|
media_encoder
|
Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-34639
|
2026-05-14 04:36 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1978
|
7.8 |
HIGH
Local
|
adobe
|
media_encoder
|
Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exp…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-34640
|
2026-05-14 04:36 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1979
|
9.8 |
CRITICAL
Network
|
dani-garcia
|
vaultwarden
|
Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.4, there is a security vulnerability in Vaultwarden that allows bypassing the login brute-force protection if email 2fa is …
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2026-43914
|
2026-05-14 04:35 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1980
|
7.8 |
HIGH
Local
|
adobe
|
after_effects
|
After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-34642
|
2026-05-14 04:35 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
