Adobe released the Patch Tuesday security updates for December 2019 that address flaws in Acrobat and Reader, Photoshop CC, ColdFusion, and Brackets.
Adobe Patch Tuesday security updates for December 2019 address a total of 25 flaws in Acrobat and Reader, Photoshop CC, ColdFusion, and Brackets.
“Adobe has published security bulletins for Adobe Acrobat and Reader (APSB19-55), Adobe Photoshop (APSB19-56), Brackets (APSB19-57) and Adobe ColdFusion (APSB19-58). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.” reads the security advisory published by Adobe.
17 of 15 flaws have been rated as critical in severity, experts pointed out that most of them are likely exploitable, but fortunately Adobe is not aware of attacks exploiting them in the wild.
Adobe addressed 21 flaws in Adobe Acrobat and Reader for Windows and macOS operating systems, 14 of which are rated as critical severity.
Experts pointed out that an attacker could exploit the above critical flaws to execute arbitrary code on the target systems and to take complete control of them.
Adobe addressed two critical vulnerabilities in Photoshop CC for Windows and macOS that could lead to arbitrary code execution vulnerabilities.
The remaining two issues addressed by Adobe affect Brackets, a source code editor, and ColdFusion. The vulnerability affecting Brackets was reported by Google Project Zero hacker Tavis Ormandy.
The company released updated versions for all the Adobe products, users should install them as soon as possible.
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer.
Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US.
Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines.
Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.