Security News > 2020 > January > Adobe Patches Five Critical Illustrator CC Flaws

Adobe Patches Five Critical Illustrator CC Flaws
2020-01-14 15:42

Adobe has released patches for five critical vulnerabilities in Adobe Illustrator CC, its popular vector graphics editor tool, which if exploited could enable arbitrary code execution.

Overall Adobe patched nine vulnerabilities as part of its regularly-scheduled updates on Tuesday, including five critical ones in Adobe Illustrator CC, and four "Important" and "Moderate" flaws in Adobe Experience Manager, its platform for integrated online marketing and web analytics.

The five critical flaws open Illustrator CC up to a memory-corruption attack, which occurs when the contents of a memory location are modified due to programming errors, ultimately enabling attackers to execute arbitrary code.

Adobe also stomped out three "Important" vulnerabilities and one "Moderate" flaw in AEM. All four flaws could enable sensitive information disclosure.

This month's Adobe patches were few and far between, particularly after last month's December update, when Adobe patched 25 CVEs overall across various products, including 17 critical vulnerabilities in Acrobat Reader, Photoshop and Brackets, which could lead to arbitrary code execution if exploited.


News URL

https://threatpost.com/adobe-patches-critical-illustrator-cc-flaws/151812/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 112 77 1333 1988 640 4038