High-severity code execution issues were also resolved in After Effects (4 vulnerabilities), Premiere Pro (3 flaws), Media Encoder (2), Substance 3D Painter (2), and Substance 3D Sampler (1).The update for Illustrator resolves two high-severity code execution defects and two medium-severity issues leading to DoS and memory exposure. Of the five medium-severity weaknesses patched in Substance 3D Designer, four could lead to code execution and one to arbitrary file system read.Adobe assigned a priority rating of 2 to the Commerce update because the product has previously been targeted in attacks. The remaining updates have a priority rating of 3.The company says it is not aware of any of these vulnerabilities being exploited in the wild. Additional information can be found on Adobe’sPSIRT page.Related:Apple Patches Dozens of Vulnerabilities in macOS, iOSRelated:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
The update for Illustrator resolves two high-severity code execution defects and two medium-severity issues leading to DoS and memory exposure. Of the five medium-severity weaknesses patched in Substance 3D Designer, four could lead to code execution and one to arbitrary file system read.Adobe assigned a priority rating of 2 to the Commerce update because the product has previously been targeted in attacks. The remaining updates have a priority rating of 3.The company says it is not aware of any of these vulnerabilities being exploited in the wild. Additional information can be found on Adobe’sPSIRT page.Related:Apple Patches Dozens of Vulnerabilities in macOS, iOSRelated:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Adobe assigned a priority rating of 2 to the Commerce update because the product has previously been targeted in attacks. The remaining updates have a priority rating of 3.The company says it is not aware of any of these vulnerabilities being exploited in the wild. Additional information can be found on Adobe’sPSIRT page.Related:Apple Patches Dozens of Vulnerabilities in macOS, iOSRelated:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
The company says it is not aware of any of these vulnerabilities being exploited in the wild. Additional information can be found on Adobe’sPSIRT page.Related:Apple Patches Dozens of Vulnerabilities in macOS, iOSRelated:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Related:Apple Patches Dozens of Vulnerabilities in macOS, iOSRelated:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Related:SAP Patches Critical S/4HANA, Commerce VulnerabilitiesRelated:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Related:Vulnerability in Claude Extension for Chrome Exposes AI Agent to TakeoverRelated:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Related:Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks
Ionut Arghire is an international correspondent for SecurityWeek.
In cyber-physical systems (CPS), just one hour of downtime can outweigh an entire annual security budget. Learn how to master the Return on Security Investment (ROSI) to align security goals with the bottom-line priorities.
Source: SecurityWeek
