Security News > 2020 > February > Critical Adobe Flaws Fixed in Out-of-Band Update

Critical Adobe Flaws Fixed in Out-of-Band Update
2020-02-20 13:26

Adobe has issued unscheduled patches for two critical vulnerabilities that, if exploited, enable an attacker to execute remote code on targeted devices.

The two apps affected by the critical flaws are Adobe After Effects, a visual effects and motion graphics app used for post-production film making and video game production, and Adobe Media Encoder, an application to help with media processing requirements for audio and video.

Users need to update to version 17.0.3, available on both Windows and macOS. While the vulnerability is critical in severity, the update has a priority 3 rating, which according to Adobe "resolves vulnerabilities in a product that has historically not been a target for attackers.

These latest patches come a week after Adobe issued its regularly scheduled fixes for February, which stomped out flaws tied to 42 CVEs.

In Adobe's January security update, it addressed nine vulnerabilities overall, including ones in Adobe Illustrator CC and Adobe Experience Manager.


News URL

https://threatpost.com/critical-adobe-flaws-fixed-in-out-of-band-update/153060/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 112 77 1333 1988 640 4038