Adobe Lightroom
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Adobe Lightroom.
Recent Adobe Lightroom Security Advisories
| Advisory | Title | Published |
|---|---|---|
| APSB26-06 | Security Updates Available for Adobe Lightroom | APSB26-06 | February 10, 2026 |
| APSB25-29 | Security Updates Available for Adobe Lightroom | APSB25-29 | May 13, 2025 |
| APSB24-78 | Security Updates Available for Adobe Lightroom | APSB24-78 | October 8, 2024 |
| APSB24-17 | Security Updates Available for Adobe Lightroom | APSB24-17 | March 12, 2024 |
| APSB21-119 | Security Updates Available for Adobe Lightroom | APSB20-74 APSB21-119 | December 14, 2021 |
| APSB21-97 | Security Updates Available for Adobe Lightroom | APSB20-74 APSB21-97 | October 27, 2021 |
| APSB20-74 | Security Updates Available for Adobe Lightroom | APSB20-74 | December 8, 2020 |
| APSB20-51 | Security Updates Available for Adobe Lightroom | APSB20-51 | August 11, 2020 |
By the Year
In 2026 there have been 1 vulnerability in Adobe Lightroom with an average score of 7.8 out of ten. Last year, in 2025 Lightroom had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Lightroom in 2026 could surpass last years number. Interestingly, the average vulnerability score and the number of vulnerabilities for 2026 and last year was the same.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 7.80 |
| 2025 | 1 | 7.80 |
| 2024 | 2 | 6.65 |
| 2023 | 1 | 7.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 0.00 |
It may take a day or so for new Lightroom vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Adobe Lightroom Security Vulnerabilities
Lightroom Desktop <15.1: OOB Write Allows Arbitrary Code Exec
CVE-2026-21349
7.8 - High
- February 10, 2026
Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Adobe Lightroom 8.2 OOB Write Causing Arbitrary Code Exec
CVE-2025-27197
7.8 - High
- May 13, 2025
Lightroom Desktop versions 8.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Out-of-Bounds Read in Adobe Lightroom Desktop <7.4.1/13.5/12.5.1 Bypass ASLR
CVE-2024-45145
5.5 - Medium
- October 09, 2024
Lightroom Desktop versions 7.4.1, 13.5, 12.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Out-of-bounds Read
Adobe Lightroom 7.1.2 Untrusted Search Path -> Code Exec CVE-2024-20754
CVE-2024-20754
7.8 - High
- March 18, 2024
Lightroom Desktop versions 7.1.2 and earlier are affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Untrusted Path
Adobe Lightroom 4.4 UAF in TIFF parsing leading to privilege escalation
CVE-2021-43753
7.8 - High
- September 07, 2023
Adobe Lightroom versions 4.4 (and earlier) are affected by a use-after-free vulnerability in the processing of parsing TIF files that could result in privilege escalation. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Dangling pointer
Adobe Lightroom versions 9.2.0.10 and earlier have an insecure library loading vulnerability
CVE-2020-9724
- August 19, 2020
Adobe Lightroom versions 9.2.0.10 and earlier have an insecure library loading vulnerability. Successful exploitation could lead to privilege escalation.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Adobe Lightroom or by Adobe? Click the Watch button to subscribe.
