Adobe Monthly Security Update (January 2026)

Release Date: 14 Jan 2026 10419 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)
Adobe DreamweaverMedium Risk Medium RiskRemote Code Execution
Data Manipulation		 APSB26-01
Adobe InDesignMedium Risk Medium Risk

Remote Code Execution

Information Disclosure

 APSB26-02
Adobe IllustratorMedium Risk Medium RiskRemote Code Execution
Denial of Service		 APSB26-03
Adobe InCopyMedium Risk Medium RiskRemote Code Execution APSB26-04
Adobe BridgeMedium Risk Medium RiskRemote Code Execution APSB26-07
Substance 3D ModelerMedium Risk Medium Risk

Remote Code Execution
Denial of Service

Information Disclosure

 APSB26-08
Substance 3D StagerMedium Risk Medium RiskRemote Code Execution APSB26-09
Substance 3D PainterMedium Risk Medium RiskRemote Code Execution APSB26-10
Substance 3D SamplerMedium Risk Medium RiskRemote Code Execution APSB26-11
Adobe ColdFusionMedium Risk Medium RiskRemote Code Execution APSB26-12
Substance 3D DesignerMedium Risk Medium RiskInformation Disclosure APSB26-13

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 11

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk

Impact

  • Remote Code Execution
  • Information Disclosure
  • Data Manipulation
  • Denial of Service

System / Technologies affected

  • Adobe Dreamweaver  21.6 and earlier versions
  • Adobe InDesign ID21.0 and earlier versions
  • Adobe InDesign ID19.5.5 and earlier versions
  • Illustrator 2025 29.8.3 and earlier versions
  • Illustrator 2026 30.0 and earlier versions
  • Adobe InCopy  21.0 and earlier versions
  • Adobe InCopy  19.5.5 and earlier versions
  • Adobe Bridge  15.1.2 (LTS) and earlier versions
  • Adobe Bridge  16.0 and earlier versions
  • Adobe Substance 3D Modeler 1.22.4 and earlier versions
  • Adobe Substance 3D Stager 3.1.5 and earlier versions
  • Adobe Substance 3D Painter 11.0.3 and earlier versions
  • Adobe Substance 3D Sampler 5.1.0 and earlier versions
  • ColdFusion 2025 Update 5 and earlier versions
  • ColdFusion 2023 Update 17 and earlier versions
  • Adobe Substance 3D Designer 15.0.3 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier

Source

Related Link

Related Tags

AdobeRemote Code ExecutionInformation DisclosureData ManipulationDenial of Service

Share with

Previous

Fortinet Products Remote Code Execution Vulnerabilities

14 Jan 2026 16173 Views

Next

Aruba Products Multiple Vulnerabilities

15 Jan 2026 6767 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY