You should know that Microsoft isn’t the only company that has such a rollout on a monthly basis. So, in this article, we’re going to talk about Adobe and some of the patches for their products. As we’re pretty sure you know by now, we will also include links to the download source, so you don’t have to scour the internet to find them.

Adobe releases updates for 25 CVEs

Before we get into it, let’s also take a look at what happened in July 2022, when Adobe released 27 CVEs in four patches for Acrobat and Reader, Photoshop, RoboHelp, and Adobe Character Animator. The highlight of last month’s release was definitely the Acrobat and Reader update which addressed a combination of 22 different Critical- and Important-rated bugs. It goes without saying that the most severe of these could allow code execution if an attacker convinces a target to open a specially crafted PDF document. Now, let’s get back to the present and explore what the company has prepared for its users as a part of the August batch of patches.

Acrobat Reader

Just as last month, we will kick off this list with the update for Acrobat and Reader, which addresses three Critical-rated and four Important-rated bugs. These above-mentioned critical vulnerabilities could allow code execution if an attacker could convince a user to open a specially crafted file.

Affected versions

Commerce

Next, let’s take a look at the seven fixes that were released for the Commerce app, which actually includes four Critical-rated bugs. You should know that two of these could allow code execution and two could indeed lead to a privilege escalation. Needless to say, the XML injection bug fixed by this has the highest CVSS of Adobe’s release at 9.1.

Affected versions

Illustrator

You surely want to also hear about the patch that was issued for Illustrator, one that contains two Critical and two Important fixes for some nasty bugs submitted. The most severe out of these above-mentioned application bugs could lead to code execution and memory leak. when opening a specially crafted file.

Affected versions

FrameMaker

Even though we haven’t seen this adobe software in the Patch Tuesday bulletin for quite some time, know that there are also six FrameMaker bugs, five of which could lead to code execution. This update addresses multiple critical and important vulnerabilities, which means a fix update was mandatory and Adobe has acknowledged and delivered.

Affected versions

Premiere Elements

We are going to conclude this list by saying that there’s only a single Critical-rated CVE in the Premier Elements patch, which is resulting from an uncontrolled search path element. The company wants us to know that successful exploitation could lead to privilege escalationin the context of the current user.      

Affected versions

Please keep in mind that none of the bugs fixed by Adobe this month are listed as publicly known or under active attack at the time of release. Adobe actively categorizes the majority of these updates as a deployment priority rating of 3, with the Acrobat patch being the lone exception at 2. This is what you are looking at in terms of Patch Tuesday releases for Adobe for the month of August 2022, so hurry up and get the software. What’s your take on this month’s release? Share your thoughts with us in the comments section below.

Name * Email * Commenting as . Not you? Save information for future comments
Comment

Δ