Adobe has released security updates for Adobe Character Animator, ColdFusion, InDesign, Framemaker, and InCopy.
An attacker could exploit these vulnerabilities and potentially take over impacted systems.
Adobe Character Animator
The Adobe Character Animator security update (APSB22-21) addressed one Critical vulnerability CVE-2022-28819 that could each lead to arbitrary code execution.
The vulnerability affect Adobe Character Animator for Windows and macOS.
The Adobe ColdFusion security update (APSB22-22) fixed just one vulnerability CVE-2022-28818 rated Important that could lead to arbitrary code execution.
The issue affects ColdFusion 2018 and ColdFusion 2021.
The Adobe InDesign security update (APSB22-23) patched three Critical vulnerabilities (CVE-2022-28831, CVE-2022-28832, and CVE-2022-28833) that could each lead to arbitrary code execution.
The Adobe Framemaker security update (APSB22-27) addressed none Critical vulnerabilities (CVE-2022-28821, CVE-2022-28822, CVE-2022-28823, CVE-2022-28824, CVE-2022-28825, CVE-2022-28826, CVE-2022-28827, CVE-2022-28828, and CVE-2022-28829) that could each lead to arbitrary code execution.
The issues affect Adobe Framemaker 2019 Release Update 8 (and earlier) and Adobe Framemaker 2020 Release Update 4 and earlier.
The Adobe InCopy security update (APSB22-28) fixed three Critical vulnerabilities (CVE-2022-28834, CVE-2022-28835, and CVE-2022-28836) that could each lead to arbitrary code execution.
The issues affect Adobe InCopy 17.1 (and earlier version) and Adobe InCopy 16.4.1 (and earlier version) for Windows and macOS.
- Microsoft May 2022 Security Updates addresses 73 vulnerabilities (7 rated Critical, 1 zero-day)
- Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects
- CISA adds 9 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include new Adobe and Chrome zero-days)