Skip to main content

Adobe Monthly Security Update (January 2022)

Release Date: 12 Jan 2022 4518 Views

RISK: Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)
Adobe Acrobat and ReaderMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
Denial of Service
Security Restriction Bypass
Information Disclosure
 APSB22-01
Adobe IllustratorMedium Risk Medium RiskElevation of Privilege APSB22-02
Adobe BridgeMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
Information Disclosure
 APSB22-03
Adobe InCopyMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
 APSB22-04
Adobe InDesignMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
 APSB22-05

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 5

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk


Impact

  • Denial of Service
  • Remote Code Execution
  • Elevation of Privilege
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Adobe Acrobat DC 21.007.20099 and earlier versions
  • Adobe Acrobat Reader DC 21.007.20099 and earlier versions
  • Adobe Acrobat 2020 20.004.30017 and earlier versions
  • Adobe Acrobat Reader 2020 20.004.30017 and earlier versions
  • Adobe Acrobat 2017 17.011.30204  and earlier versions
  • Adobe Acrobat Reader 2017 17.011.30204  and earlier versions
  • Adobe Illustrator 2022 26.0.1 and earlier versions
  • Adobe Illustrator 2021 25.4.2 and earlier versions
  • Adobe Bridge  12.0 and earlier versions
  • Adobe Bridge  11.1.2 and earlier versions
  • Adobe InCopy  16.4 and earlier versions
  • Adobe InDesign 16.4 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update

Vulnerability Identifier


Source


Related Link