Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution.
- Adobe After Effects is a digital visual effects, motion graphics, and compositing application.
- Adobe Photoshop is a raster graphics editor.
- Adobe Commerce is a flexible and scalable commerce platform that lets you create personalized B2B and B2C experiences.
- Adobe InDesign is a desktop publishing and page layout designing software application.
- Adobe Experience Manager is an all-in-one software suite used for content and asset management.
- Adobe Media Encoder is an audio/video media processing program that allows users to convert files into other types of files.
- Adobe Bridge is used to preview, organize, edit, and publish assets.
- Adobe Illustrator is a vector graphics editor and design software.
- Adobe Animate is used to create vector graphics and interactive content.
Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights
Read more... Cyber Security Advisories - MS-ISAC