Adobe Monthly Security Update (November 2024)

Impact

• Remote Code Execution
• Information Disclosure
• Denial of Service

System / Technologies affected

• Adobe Bridge  13.0.9 and earlier versions
• Adobe Bridge  14.1.2 and earlier versions
• Adobe Audition 24.4.6 and earlier versions
• Adobe Audition 23.6.9 and earlier versions
• Adobe After Effects 24.6.2 and earlier versions
• Adobe After Effects 23.6.9 and earlier versions
• Adobe Substance 3D Painter 10.1.0 and earlier versions
• Illustrator 2024 28.7.1 and earlier versions
• Adobe InDesign ID19.5 and earlier versions
• Adobe InDesign ID18.5.3 and earlier versions
• Adobe InDesign ID18.5.2 and earlier versions
• Photoshop 2023 24.7.3 and earlier versions
• Photoshop 2024 25.11 and earlier versions
• Adobe Commerce and Magento Open Source powered by Commerce Services and deployed as SaaS (software as a service). (Commerce Services Connector) 3.2.5 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

• Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier

• https://www.cvedetails.com/vulnerability-list.php?vendor_id=53&year=2024&month=11

Source

• Adobe

Related Link

• https://helpx.adobe.com/security.html/security/security-bulletin.ug.html