Skip to main content

Adobe Monthly Security Update (Dec 2020)

Last Update Date: 9 Dec 2020 09:49 Release Date: 9 Dec 2020 1257 Views

RISK: Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)
Adobe PreludeMedium Risk Medium RiskRemote Code Execution APSB20-70
Adobe Experience ManagerMedium Risk Medium RiskInformation Disclosure
Cross-site Scripting
 APSB20-72
Adobe LightroomMedium Risk Medium RiskRemote Code Execution APSB20-74

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 3

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk


Impact

  • Cross-Site Scripting
  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • Adobe Prelude 9.0.1  and earlier versions
  • Adobe Experience Manager (AEM) AEM Cloud Service (CS)
  • Adobe Experience Manager (AEM) 6.5.6.0 and earlier versions
  • Adobe Experience Manager (AEM) 6.4.8.2 and earlier versions
  • Adobe Experience Manager (AEM) 6.3.3.8 and earlier versions
  • Adobe Experience Manager (AEM) 6.2 SP1-CFP20 and earlier versions
  • AEM Forms add-on AEM Forms Service Pack 6 add-on package for AEM 6.5.6.0
  • AEM Forms add-on AEM Forms add-on package for AEM 6.4 Service Pack 8 Cumulative Fix Pack 2 (6.4.8.2)
  • Lightroom Classic 10.0 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update

Vulnerability Identifier


Source


Related Link