Adobe Monthly Security Update (October 2021)
Release Date:
15 Oct 2021
5235
Views
RISK: Medium Risk
TYPE: Clients - Productivity Products
Adobe has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes | Details (including CVE) |
| Adobe Acrobat and Reader |  Medium Risk | Remote Code Execution Elevation of Privilege | APSB21-104 | |
| Adobe Connect | Medium Risk | Remote Code Execution Cross-site Scripting | APSB21-91 | |
| Adobe Reader Mobile | Medium Risk | Remote Code Execution Security Restriction Bypass | APSB21-89 | |
| Adobe Ops-CLI | Medium Risk | Remote Code Execution | APSB21-88 | |
| Adobe Commerce | Medium Risk | Security Restriction Bypass | APSB21-86 | |
| Adobe Campaign Standard | Medium Risk | Cross-site Scripting Remote Code Execution | APSB21-52 |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 0
Number of 'Medium Risk' product(s): 6
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': Medium Risk
Impact
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Cross-Site Scripting
System / Technologies affected
- Adobe Acrobat DC 21.007.20095 and earlier versions
- Adobe Acrobat Reader DC 21.007.20095 and earlier versions
- Adobe Acrobat DC for Mac 21.007.20096 and earlier versions
- Adobe Acrobat Reader DC for Mac 21.007.20096 and earlier versions
- Adobe Acrobat 2020 20.004.30015 and earlier versions
- Adobe Acrobat Reader 2020 20.004.30015 and earlier versions
- Adobe Acrobat 2017 17.011.30202 and earlier versions
- Adobe Acrobat Reader 2017 17.011.30202 and earlier versions
- Adobe Connect 11.2.2 and earlier versions
- Adobe Acrobat Reader for Android 21.8.0 and earlier versions
- Adobe Ops-CLI 2.0.4 and earlier versions
- Adobe Commerce 2.4.2-p2 and earlier versions
- Adobe Commerce 2.4.3 and earlier versions
- Adobe Commerce 2.3.7-p1 and earlier versions
- Magento Open Source 2.4.2-p2 and earlier versions
- Magento Open Source 2.4.3 and earlier versions
- Magento Open Source 2.3.7-p1 and earlier versions
- Adobe Campaign Standard Release 21.2.1 and earlier versions
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update
Vulnerability Identifier
Source
Related Link
Related Tags
Share with