The Indian Computer Emergency Response Team (CERT-In) has issued an important warning for 29 Adobe software and services. The government body has reported that they’ve found several security flaws within multiple Adobe products. This includes popular tools like Photoshop, ColdFusion, Creative Cloud, etc.
The government body has classified the vulnerabilities as “High” severity and has warned users to apply the necessary patch.
What government has saidAccording to the report, “multiple vulnerabilities have been reported in Adobe products which could be exploited by a remote attacker to bypass security restrictions, execute arbitrary code, gain elevated privileges and gain access to sensitive information on the target system.”
Adobe software and products affected - Adobe Photoshop 2023 24.7.3 and earlier versions for Windows and macOS
- Adobe Photoshop 2024 25.7 and earlier versions for Windows and macOS
- Adobe Experience Manager (AEM) AEM Cloud Service (CS)
- Adobe Experience Manager (AEM) 6.5.20 and earlier versions
- Adobe Audition 24.2 and earlier versions for Windows and macOSTE
- Adobe Audition 23.6.4 and earlier versions for Windows and macOS
- Adobe Media Encoder 24.3 and earlier versions for Windows and macOS
- Adobe Media Encoder 23.6.5 and earlier versions for Windows and macOS
- Adobe FrameMaker Publishing Server Version 2022.2 and earlier versions for Windows
- Adobe FrameMaker Publishing Server Version 2020 Update 3 and earlier versions for Windows
- Adobe Commerce 2.4.7 and earlier versions
- Adobe Commerce 2.4.6-p5 and earlier versions
- Adobe Commerce 2.4.5-p7 and earlier versions
- Adobe Commerce 2.4.4-p8 and earlier versions
- Adobe Commerce 2.4.3-ext-7 and earlier versions
- Adobe Commerce 2.4.2-ext-7 and earlier versions
- Adobe Commerce 2.4.1-ext-7 and earlier versions
- Adobe Commerce 2.4.0-ext-7 and earlier versions
- Adobe Commerce 2.3.7-p4-ext-7 and earlier versions
- Magento Open Source 2.4.7 and earlier versions
- Magento Open Source 2.4.6-p5 and earlier versions
- Magento Open Source 2.4.5-p7 and earlier versions
- Magento Open Source 2.4.4-p8 and earlier versions
- Adobe Commerce Webhooks Plugin 1.2.0 to 1.4.0
- Adobe ColdFusion 2023 Update 7 and earlier versions
- Adobe ColdFusion 2021 Update 13 and earlier versions
- Adobe Substance 3D Stager 2.1.4 and earlier versions for Windows and macOS
- Adobe Creative Cloud Desktop Application 6.1.0.587 and earlier versions for Windows
- Adobe Acrobat Android 24.4.2.33155 and earlier versions for all Android versions
What users can do
Users have been advised to update their Adobe software or product with the latest version available.