In September 2024, Adobe has rolled out a series of crucial security updates for several of its major products. This release addresses multiple vulnerabilities across its software suite, including Adobe Media Encoder, Adobe Audition, Adobe After Effects, Adobe Premiere Pro, Adobe Illustrator, Adobe Acrobat Reader, Adobe ColdFusion, and Adobe Photoshop. These updates are imperative for safeguarding your systems against potential security threats.
Overview of September 2024 Security Updates
Adobe’s latest security updates tackle various critical vulnerabilities that could potentially lead to significant issues, including arbitrary code execution and memory leaks. Below is a summary of the key updates:
1.Adobe Media Encoder
Advisory/CVEs: APSB24-53
Severity: Critical
Affected Version: Versions 24.5 and earlier, 23.6.8 and earlier
Impact: Memory leak and Arbitrary code execution
2.Adobe Audition
Advisory/CVEs: APSB24-54
Severity: Critical
Affected Version: Versions 24.4.1 and earlier, 23.6.6 and earlier
Impact: Memory leak and Arbitrary code execution
3.Adobe After Effects
Advisory/CVEs: APSB24-55
Severity: Critical
Affected Version: Versions 24.5 and earlier, 23.6.6 and earlier
Impact: Memory leak, Arbitrary code execution and Arbitrary file system write
4.Adobe Premiere Pro
Advisory/CVEs: APSB24-58
Severity: Critical
Affected Version: Versions 24.5 and earlier, 23.6.8 and earlier
Impact: Memory leak and Arbitrary code execution
5.Adobe Illustrator
Advisory/CVEs: APSB24-66
Severity: Critical
Affected Version: Illustrator 2024 Versions 28.6 and earlier, Illustrator Versions 2023 27.9.5 and earlier
Impact: Memory leak, Arbitrary code execution and Application denial-of-service
6.Adobe Acrobat and? Reader
Advisory/CVEs: APSB24-70
Severity: Critical
Affected Version:
i. Adobe Acrobat DC (Continuous) : 24.003.20054 and earlier, 24.002.21005 and earlier
ii. Adobe Acrobat Reader DC (Continuous) : 24.003.20054 and earlier, 24.002.21005 and earlier
iii. Adobe Acrobat 2024 (Classic 2024) : 24.001.30159 and earlier
iv. Adobe Acrobat 2020 (Classic 2020) : 20.005.30655 and earlier
v. Adobe Acrobat Reader 2020 (Classic 2020) : 20.005.30655 and earlier
Impact: Arbitrary code execution
7.Adobe ColdFusion
Advisory/CVEs: APSB24-71
Severity: Critical
Affected Version: ColdFusion 2023 Update 9 and earlier, ColdFusion 2021 Update 15 and earlier
Impact: Arbitrary code execution
8.Adobe Photoshop
Advisory/CVEs: APSB24-72
Severity: Critical
Affected Version: Photoshop 2023 version 24.7.4 and earlier, Photoshop 2024 version 25.11 and earlier
Impact: Arbitrary code execution and Memory leak
The Adobe Critical Security Updates of September 2024 address significant security flaws in a range of Adobe products. By updating to the latest versions, users can protect their systems from vulnerabilities that could otherwise be exploited by attackers. Ensure that your software is up-to-date to benefit from these critical patches.
Stay informed and stay secure!
Patch Critical Risks Before its Too Late with SanerNow
SecPod SanerNow CVEM is an integrated vulnerability and patch management solution that can detect, assess, prioritize and remediate vulnerabilities and other security risks in your network automatically. SanerNow supports all major OSs and 550+ third party applications to cover all bases.
SanerNow provides complete provisions to test patches before deployment. Further, you can roll them back if necessary and completely automate the process to ease the burden on your IT and security teams.
Experience next-generation of patching with SanerNow. Schedule a Demo