Security News > 2020 > May > Adobe Patches Critical RCE Flaw in Character Animator App
Adobe has issued an out-of-band patch for a critical flaw in Adobe Character Animator, its application for creating live motion-capture animation videos.
Users are urged to update to version 3.3 for Windows and macOS. While the flaw is critical, the security bulletin is a Priority 3 update, which according to Adobe resolves vulnerabilities in a product that has historically not been a target for attackers.
Users are urged to update to Adobe Premiere Rush version 1.5.12 for Windows and macOS. Another "Important"-severity flaw exists in Adobe Premiere Pro, another version of Adobe's video editing software that is more advanced than Adobe Premiere Rush.
Users can update to version 14.2 for Windows and macOS. Finally, Adobe stomped out a flaw in Audition, which is its toolset offering for creating and editing audio content.
The unscheduled patches come a week after Adobe's regularly-scheduled updates, which fixed 16 critical flaws across its Acrobat and Reader applications and its Adobe Digital Negative Software Development Kit - and addressed 36 CVEs overall.
News URL
https://threatpost.com/adobe-patches-critical-rce-flaw-character-animator/155882/
Related news
- Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
- Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
- Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
- Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)