December 12, 2023 at 03:36PM
Adobe issued fixes for code execution vulnerabilities in Illustrator, Substance 3D Sampler, and After Effects, addressing at least 207 security flaws. Notably, critical-severity issues affected Adobe Substance 3D Sampler, Illustrator, and After Effects on various platforms. Additionally, a major Adobe Experience Manager patch was released to address 185 documented bugs.
Based on the meeting notes, here are the key takeaways:
– Adobe released fixes for code execution flaws in enterprise-facing Illustrator, Substance 3D Sampler, After Effects, and other products.
– At least 207 security vulnerabilities were documented, with warnings to users on both Windows and macOS systems regarding code execution, memory leaks, and denial-of-service attacks.
– Critical-severity issues include six vulnerabilities in Adobe Substance 3D Sampler, three in Adobe Illustrator, and four in Adobe After Effects, all of which could lead to arbitrary code execution and memory leaks.
– A major Adobe Experience Manager patch was released with fixes for 185 documented bugs that could be exploited for arbitrary code execution and security feature bypass.
Additionally, there were related issues such as code execution flaws in Adobe Commerce and Photoshop, attacks exploiting Adobe Acrobat vulnerabilities, and a critical PDF Reader zero-day being exploited.