Skip to main content

Adobe Monthly Security Update (August 2024)

Release Date: 14 Aug 2024 5133 Views

RISK: Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)
Adobe IllustratorMedium Risk Medium RiskRemote Code Execution
Denial of Service
Information Disclosure
 APSB24-45
Adobe DimensionMedium Risk Medium RiskRemote Code Execution
Information Disclosure
 APSB24-47
Adobe PhotoshopMedium Risk Medium RiskRemote Code Execution APSB24-49
Adobe InDesignMedium Risk Medium RiskRemote Code Execution
Denial of Service
Information Disclosure
 APSB24-56
Adobe Acrobat and ReaderMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
Information Disclosure
 APSB24-57
Adobe BridgeMedium Risk Medium RiskRemote Code Execution
Information Disclosure
 APSB24-59
Substance 3D StagerMedium Risk Medium RiskRemote Code Execution APSB24-60
Adobe CommerceMedium Risk Medium RiskRemote Code Execution
Security Restriction Bypass
Information Disclosure
Cross-site Scripting
Elevation of Privilege
 APSB24-61
Adobe InCopyMedium Risk Medium RiskRemote Code Execution APSB24-64
Substance 3D SamplerMedium Risk Medium RiskRemote Code Execution
Information Disclosure
 APSB24-65
Substance 3D DesignerMedium Risk Medium RiskRemote Code Execution APSB24-67

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 11

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk


Impact

  • Remote Code Execution
  • Information Disclosure
  • Denial of Service
  • Security Restriction Bypass
  • Elevation of Privilege
  • Cross-Site Scripting

System / Technologies affected

  • Illustrator 2024 28.5 and earlier versions
  • Illustrator 2023 27.9.4 and earlier versions
  • Adobe Dimension 3.4.11 and earlier versions
  • Photoshop 2023 24.7.3 and earlier versions
  • Photoshop 2024 25.9.1 and earlier versions
  • Adobe InDesign ID19.4 and earlier versions
  • Adobe InDesign ID18.5.2 and earlier versions
  • Acrobat DC 24.002.20991 and earlier versions
  • Acrobat Reader DC 24.002.20991 and earlier versions
  • Acrobat 2024 24.001.30123 and earlier versions
  • Acrobat 2020 20.005.30636 and earlier versions
  • Acrobat Reader 2020 20.005.30636 and earlier versions
  • Adobe Bridge  13.0.8 and earlier versions
  • Adobe Bridge  14.1.1 and earlier versions
  • Adobe Substance 3D Stager 3.0.2 and earlier versions
  • Adobe Commerce 2.4.7-p1 and earlier versions
  • Adobe Commerce 2.4.6-p6 and earlier versions
  • Adobe Commerce 2.4.5-p8 and earlier versions
  • Adobe Commerce 2.4.4-p9 and earlier versions
  • Magento Open Source2.4.7-p1 and earlier versions
  • Magento Open Source2.4.6-p6 and earlier versions
  • Magento Open Source2.4.5-p8 and earlier versions
  • Magento Open Source2.4.4-p9 and earlier versions
  • Adobe InCopy  19.4 and earlier versions
  • Adobe InCopy  18.5.2 and earlier versions
  • Adobe Substance 3D Sampler 4.5 and earlier versions
  • Adobe Substance 3D Designer 13.1.2 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update

Vulnerability Identifier


Source


Related Link