Recently, Adobe released security updates for Experience Manager, Experience Manager Forms, Acrobat and Reader, and Download Manager to fix 82 vulnerabilities in these products.
The affected products that received security patches today include:
- Adobe Acrobat and Reader
- Adobe Experience Manager
- Adobe Experience Manager Forms
- Adobe Download Manager
It is understood that this update fixes 68 vulnerabilities in Acrobat and Reader, including use-after-free vulnerabilities, out-of-bounds write vulnerabilities, type confusion vulnerabilities. , as well as heap overflow holes and so on. These vulnerabilities can be used to execute arbitrary code and steal victim information. In addition, Adobe patched 12 vulnerabilities in Experience Manager and a cross-site scripting vulnerability in the Experience Manager Forms. These vulnerabilities may allow hackers to access the organization’s Experience Manager environment without authorization, resulting in the theft of sensitive information. In the Windows version of Adobe Download Manager, Adobe fixed a privilege escalation vulnerability caused by unsafe file permissions.
Adobe said that no attacks have been identified against these vulnerabilities in the wild.