Adobe patches ColdFusion and multiple other products

Adobe patches ColdFusion and multiple other products

Adobe has released security updates to address vulnerabilities in Adobe ColdFusion, Download Manager, Genuine Service, Media Encoder and Creative Cloud Desktop Manager.

Successful exploitation of these vulnerabilities could result in privilege escalation, arbitrary code execution or information disclosure.

The security updates include:

Of note, the update for Adobe Creative Cloud Desktop Application addresses one Critical arbitrary file system write vulnerability CVE-2020-9682.

In addition the Adobe Encoder update fixes two Critical arbitrary code execution vulnerabilities (CVE-2020-9650 and CVE-2020-9646).

Finally, the Adobe Download Manager update patches a Critical code execution vulnerability CVE-2020-9688.

Related Articles