Adobe Monthly Security Update (Dec 2020)
Last Update Date:
9 Dec 2020 09:49
Release Date:
9 Dec 2020
5166
Views
RISK: Medium Risk
TYPE: Clients - Productivity Products
Adobe has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes | Details (including CVE) |
| Adobe Prelude |  Medium Risk | Remote Code Execution | APSB20-70 | |
| Adobe Experience Manager | Medium Risk | Information Disclosure Cross-site Scripting | APSB20-72 | |
| Adobe Lightroom | Medium Risk | Remote Code Execution | APSB20-74 |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 0
Number of 'Medium Risk' product(s): 3
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': Medium Risk
Impact
- Cross-Site Scripting
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Adobe Prelude 9.0.1 and earlier versions
- Adobe Experience Manager (AEM) AEM Cloud Service (CS)
- Adobe Experience Manager (AEM) 6.5.6.0 and earlier versions
- Adobe Experience Manager (AEM) 6.4.8.2 and earlier versions
- Adobe Experience Manager (AEM) 6.3.3.8 and earlier versions
- Adobe Experience Manager (AEM) 6.2 SP1-CFP20 and earlier versions
- AEM Forms add-on AEM Forms Service Pack 6 add-on package for AEM 6.5.6.0
- AEM Forms add-on AEM Forms add-on package for AEM 6.4 Service Pack 8 Cumulative Fix Pack 2 (6.4.8.2)
- Lightroom Classic 10.0 and earlier versions
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update
Vulnerability Identifier
Source
Related Link
Share with