Total CVEs

139,442

Critical Severity

3,643

High Severity

13,079

Last 7 Days

1,428
Quick preset (or use dates below)
Clear Filters
πŸ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years β†’
Showing 3,861 - 3,880 of 35,847 CVEs
CVE-2026-41116 MEDIUM - 6.3

Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary File Write.

Vendor: Dell
Product: Inventory Collector Client
Published: Jun 09, 2026
Source: NVD
CVE-2026-34708 HIGH - 7.8

InCopy versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InCopy
Published: Jun 09, 2026
Source: NVD
CVE-2026-34707 HIGH - 7.8

InCopy versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InCopy
Published: Jun 09, 2026
Source: NVD
CVE-2026-34706 HIGH - 7.8

InCopy versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InCopy
Published: Jun 09, 2026
Source: NVD
CVE-2026-34705 MEDIUM - 5.5

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a vi...

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34704 MEDIUM - 5.5

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this iss...

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34703 MEDIUM - 5.5

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this iss...

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34702 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34701 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34700 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34699 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34698 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34697 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34696 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34695 HIGH - 7.8

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: InDesign Desktop
Published: Jun 09, 2026
Source: NVD
CVE-2026-34694 MEDIUM - 5.9

Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim...

Vendor: Adobe
Product: Adobe Experience Manager Forms JEE
Published: Jun 09, 2026
Source: NVD
CVE-2026-34693 HIGH - 8.0

Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gaining elevated access or control over the victim...

Vendor: Adobe
Product: Adobe Experience Manager Forms JEE
Published: Jun 09, 2026
Source: NVD
CVE-2026-34691 CRITICAL - 9.3

Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's browser whe...

Vendor: Adobe
Product: Adobe Experience Manager Forms JEE
Published: Jun 09, 2026
Source: NVD
CVE-2026-28237 MEDIUM - 5.5

Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability.

Vendor: AMD
Product: AMD Β΅Prof
Published: Jun 09, 2026
Source: NVD
CVE-2026-0466 MEDIUM - 5.5

Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service.

Vendor: amd
Product: uprof
Published: Jun 09, 2026
Source: NVD