Adobe has released a collection of out-of-band software updates that address a total of 41 vulnerabilities in six of its products.
Adobe has released a set of out-of-band software updates that address a total of 41 vulnerabilities in six of its products.
“Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS.” reads the advisory published by Adobe.
“These updates address critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user.”
The vulnerabilities affect the following products:
Genuine Integrity Service
Acrobat and Reader
29 vulnerabilities out of the 41 are rated as critical in severity, the remaining 11 have been rated as important.
Acrobat and Reader software for Windows and macOS systems are affected by 13 vulnerabilities, 9 of these issues (CVE-2020-3795, CVE-2020-3799, CVE-2020-3792, CVE-2020-3793, CVE-2020-3801, CVE-2020-3802, CVE-2020-3805, CVE-2020-3807, CVE-2020-3797) are rated as critical severity.
Photoshop for Windows and macOS users is affected by a total of 22 vulnerabilities, out of which 16 are critical (CVE-2020-3783, CVE-2020-3784, CVE-2020-3785, CVE-2020-3786, CVE-2020-3787, CVE-2020-3788, CVE-2020-3789, CVE-2020-3790, CVE-2020-3773, CVE-2020-3779, CVE-2020-3770, CVE-2020-3772, CVE-2020-3774, CVE-2020-3775, CVE-2020-3776, CVE-2020-3780).
The company also has addressed one sensitive information disclosure flaw in the Experience Manager application (CVE-2020-3769), two critical issues in the Adobe Bridge digital asset management app (CVE-2020-9551, CVE-2020-9552), and two critical vulnerabilities in the ColdFusion (CVE-2020-3761, CVE-2020-3794).
The good news is that none of the security vulnerabilities addressed by Adobe have been exploited in the wild.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.