February 13, 2024 at 01:03PM
Adobe released patches for 30 security vulnerabilities in various products, including Adobe Acrobat, Reader, and Magento Open Source, among others. Users are at risk of code execution, security feature bypass, and denial-of-service attacks. The urgent patches address critical flaws and code execution bugs, with Adobe’s assurance of no known exploits in the wild.
From the meeting notes, it is evident that Adobe has released patches for at least 30 documented security flaws in multiple products. The company has highlighted critical flaws in Adobe Acrobat and Reader, Adobe Commerce and Magento Open Source, Substance 3D Painter, and FrameMaker. Specifically, Adobe documented at least 13 serious security defects in the Adobe Acrobat and Reader update, which could lead to arbitrary code execution, application denial-of-service, and memory leak issues for both Windows and macOS users. Urgent attention was also called for the Adobe Commerce update due to risks of arbitrary code execution, security feature bypass, and application denial-of-service. Additionally, fixes for code execution bugs were rolled out for Adobe Substance 3D Painter, Adobe FrameMaker Publishing Server, Adobe Audition, and Adobe Substance 3D Designer.
It is important to note that Adobe stated it was not aware of any exploits in the wild for any of the issues addressed in the February batch of patches. This information should be communicated effectively to relevant stakeholders for necessary action and awareness.