Adobe has released security updates to address vulnerabilities in Adobe Framemaker, Creative Cloud Desktop Application and Connect products.
An attacker could exploit these vulnerabilities and potentially take over impacted systems.
Adobe Framemaker
Adobe released a security update APSB21-14 for Adobe Framemaker.
This patch resolves one Critical Out-of-Bounds Read vulnerability CVE-2021-21056.
“ Successful exploitation could lead to arbitrary code execution in the context of the current user,” Adobe stated in the advisory.
Adobe Creative Cloud Desktop Application
Adobe released a security update APSB21-18 for Adobe Creative Cloud Desktop Application.
This patch resolves three Critical vulnerabilities that could result in code execution (CVE-2021-21068, CVE-2021-21078) or privilege escalation (CVE-2021-21069).
Adobe Connect
Adobe released a security update APSB21-19 for Adobe Connect.
The update addresses one Critical Input Validation vulnerability (CVE-2021-21085) and three other Important bugs (CVE-2021-21079, CVE-2021-21080 and CVE-2021-21081).
“Successful exploitation could lead to arbitrary JavaScript execution within the context of the victim’s browser,” Adobe noted in the advisory.