- How many CVEs does Adobe have?
- Adobe has 7,522 published CVE records since 1999, including 1,320 in the last two years.
- How many Adobe CVEs are in CISA KEV?
- Yes — 80 of Adobe's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Adobe products have the most CVEs?
- The Adobe products with the most published CVEs are Acrobat Reader DC, acrobat_dc, acrobat, Experience Manager, Acrobat Reader.
- What are the most common weakness types in Adobe CVEs?
- Adobe's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-125 (Out-of-bounds Read), CWE-787 (Out-of-bounds Write), CWE-416 (Use After Free).
- Are there public exploits for Adobe vulnerabilities?
- Yes — 398 of Adobe's CVEs have a known public exploit.
- How many critical Adobe vulnerabilities are there?
- Adobe has 1,876 critical and 2,848 high-severity CVEs.
- What is the average severity of Adobe CVEs?
- The average CVSS base score across Adobe's scored CVEs is 7.5.