Adobe has released a critical security update addressing 35 vulnerabilities across its software products, including the widely used Adobe Acrobat and Reader. This Patch Tuesday release highlights several critical-severity bugs that could allow attackers to execute arbitrary code on affected systems. The company urges users on both Windows and macOS platforms to apply these updates immediately to mitigate the risk of exploitation. Although Adobe has stated that no active exploits are currently known for these vulnerabilities, the potential impact necessitates swift action from users.
The vulnerabilities in Acrobat and Reader, documented under advisory APSB24-29, include a dozen critical-severity issues. These flaws, identified by CVE numbers such as CVE-2024-30284 and CVE-2024-30310, affect versions 24.002.20736 and earlier, as well as 20.005.30574 and earlier. The vulnerabilities could allow attackers to execute code remotely, compromising the security of the affected systems. In addition to Acrobat and Reader, Adobe has addressed critical issues in other products, including Illustrator, Substance 3D Painter, Aero, Animate, Framemaker, and Dreamweaver.
Illustrator’s updates, listed under APSB24-30, cover three critical vulnerabilities that could lead to code execution on both Windows and macOS platforms. Similarly, Adobe Substance 3D Painter received patches for four security issues (APSB24-31), and Adobe Aero was updated to fix an arbitrary code execution bug (APSB24-33). Furthermore, Adobe Animate, Framemaker, and Dreamweaver updates address multiple critical vulnerabilities, ensuring comprehensive coverage across Adobe’s suite of tools.
Users are strongly advised to update their software to the latest versions to protect against potential attacks. Keeping software up-to-date and applying security patches promptly is crucial in maintaining cybersecurity. Adobe’s proactive approach in identifying and patching these vulnerabilities demonstrates the importance of regular security maintenance and vigilance against emerging threats.
Reference:
