Adobe Monthly Security Update (December 2021)
Release Date:
15 Dec 2021
4772
Views
RISK: Medium Risk
TYPE: Clients - Productivity Products
Adobe has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes | Details (including CVE) |
| Adobe Premiere Rush |  Medium Risk | Remote Code Execution Denial of Service Elevation of Privilege | APSB21-101 | |
| Adobe Experience Manager | Medium Risk | Cross-site Scripting Remote Code Execution Security Restriction Bypass | APSB21-103 | |
| Adobe Connect | Medium Risk | Data Manipulation | APSB21-112 | |
| Adobe Photoshop | Medium Risk | Remote Code Execution Information Disclosure | APSB21-113 | |
| Adobe Prelude | Medium Risk | Remote Code Execution Elevation of Privilege | APSB21-114 | |
| Adobe After Effects | Medium Risk | Information Disclosure Remote Code Execution Elevation of Privilege | APSB21-115 | |
| Adobe Dimension | Medium Risk | Information Disclosure Elevation of Privilege Remote Code Execution | APSB21-116 | |
| Adobe Premiere Pro | Medium Risk | Information Disclosure Elevation of Privilege Remote Code Execution | APSB21-117 | |
| Adobe Media Encoder | Medium Risk | Information Disclosure Remote Code Execution Elevation of Privilege | APSB21-118 | |
| Adobe Lightroom | Medium Risk | Elevation of Privilege | APSB21-119 | |
| Adobe Audition | Medium Risk | Information Disclosure Elevation of Privilege | APSB21-121 |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 0
Number of 'Medium Risk' product(s): 11
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': Medium Risk
Impact
- Denial of Service
- Remote Code Execution
- Elevation of Privilege
- Cross-Site Scripting
- Security Restriction Bypass
- Data Manipulation
- Information Disclosure
System / Technologies affected
- Adobe Premiere Rush 1.5.16 and earlier versions
- Adobe Experience Manager (AEM) AEM Cloud Service (CS)
- Adobe Experience Manager (AEM) 6.5.10.0 and earlier versions
- Adobe Connect 11.3 and earlier versions
- Photoshop 2021 22.5.3 and earlier versions
- Photoshop 2022 23.0.2 and earlier versions
- Adobe Prelude 22.0 and earlier versions
- Adobe After Effects 22.0 and earlier versions
- Adobe After Effects 18.4.2 and earlier versions
- Adobe Dimension 3.4.3 and earlier versions
- Adobe Premiere Pro 22.0 and earlier versions
- Adobe Premiere Pro 15.4.2 and earlier versions
- Adobe Media Encoder 22.0 and earlier versions
- Adobe Media Encoder 15.4.2 and earlier versions
- Lightroom 4.4 and earlier versions
- Adobe Audition 22.0 and earlier versions
- Adobe Audition 14.4 and earlier versions
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update
Vulnerability Identifier
Source
Related Link
Related Tags
Share with