Critical Adobe Flaws Fixed in Out-of-Band Update

2020-02-20 13:26

Adobe has issued unscheduled patches for two critical vulnerabilities that, if exploited, enable an attacker to execute remote code on targeted devices.

The two apps affected by the critical flaws are Adobe After Effects, a visual effects and motion graphics app used for post-production film making and video game production, and Adobe Media Encoder, an application to help with media processing requirements for audio and video.

Users need to update to version 17.0.3, available on both Windows and macOS. While the vulnerability is critical in severity, the update has a priority 3 rating, which according to Adobe "resolves vulnerabilities in a product that has historically not been a target for attackers.

These latest patches come a week after Adobe issued its regularly scheduled fixes for February, which stomped out flaws tied to 42 CVEs.

In Adobe's January security update, it addressed nine vulnerabilities overall, including ones in Adobe Illustrator CC and Adobe Experience Manager.

News URL

https://threatpost.com/critical-adobe-flaws-fixed-in-out-of-band-update/153060/

#adobe #critical

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		167	66	2130	907	2113	5216