Adobe Patches 254 Security Flaws in Acrobat, AEM, Magento & More
Adobe has just rolled out a massive security update, addressing an astonishing 254 vulnerabilities across its popular platforms, including Acrobat, Reader, AEM, InDesign, and Magento. In its latest security bulletin, the company has confirmed that none of these flaws are currently under active attack. Although no active exploits have been reported, users and businesses should apply these updates immediately to ensure the security of their systems and data.
The security update, which was released on April 13, 2023, affects a wide range of Adobe products, including:
- Acrobat and Acrobat Reader: Adobe’s popular PDF software has been updated to fix 134 vulnerabilities, including several critical flaws that could allow attackers to execute arbitrary code on a victim’s system.
- Adobe Experience Manager (AEM): This content management platform has been patched to address 44 vulnerabilities, including several that could allow attackers to compromise the security of AEM installations.
- InDesign: Adobe’s professional graphics and design software has been updated to fix 23 vulnerabilities, including several that could allow attackers to execute arbitrary code on a victim’s system.
- Magento: Adobe’s e-commerce platform has been patched to address 53 vulnerabilities, including several that could allow attackers to compromise the security of Magento installations.
According to Adobe’s security bulletin, none of the vulnerabilities being addressed in this update are currently under active attack. However, the company has not ruled out the possibility that some of these flaws may be exploited in the future.
“It is essential to apply these updates immediately to protect your systems and data from potential attacks,” said a spokesperson for Adobe. “We have taken the necessary steps to ensure that none of these flaws are currently under active attack, but it is always better to be proactive in addressing potential security risks.”
The vulnerabilities being addressed in this update include several critical flaws that could allow attackers to execute arbitrary code on a victim’s system, as well as several high-severity flaws that could allow attackers to compromise the security of Adobe products and services.
Some of the most critical vulnerabilities being addressed in this update include:
- A vulnerability in Adobe Acrobat and Reader that could allow attackers to execute arbitrary code on a victim’s system.
- A vulnerability in Adobe Experience Manager (AEM) that could allow attackers to compromise the security of AEM installations.
- A vulnerability in InDesign that could allow attackers to execute arbitrary code on a victim’s system.
- A vulnerability in Magento that could allow attackers to compromise the security of Magento installations.
Adobe has not provided any information on how these vulnerabilities were discovered or exploited, but it is likely that they were discovered through a combination of internal testing and external reporting.
In addition to the vulnerabilities being addressed in this update, Adobe has also released a new version of its Adobe Secure Plug-in for Acrobat and Reader, which provides additional security features and protections for users.
The update is available for download from the Adobe website, and users are encouraged to apply it as soon as possible to ensure the security of their systems and data.
Conclusion
Adobe’s latest security update is a significant step forward in protecting users and businesses from potential security risks. With over 200 vulnerabilities being addressed across its popular platforms, including Acrobat, Reader, AEM, InDesign, and Magento, this update is a must-have for anyone using Adobe products and services.
Although no active exploits have been reported, users and businesses should apply these updates immediately to ensure the security of their systems and data. By doing so, they can help protect themselves from potential attacks and ensure the continued integrity and security of their Adobe products and services.
Source:
https://geekflare.com/news/adobe-fixes-200-security-flaws-in-acrobat-aem-indesign-magento/
