Adobe fixes critical vulnerability in Photoshop

Adobe has released additional security updates. The updates for seven programs eliminate a number of security vulnerabilities classified as critical.

One week after Patch Day on July 13th, Adobe is adding another round of security updates. The manufacturer closes 21 vulnerabilities in seven products such as Photoshop, After Effects, Premiere Pro, Media Encoder, Audition, Prelude and Character Animator. The majority of these security vulnerabilities have been identified as critical. Attacks that exploit one or more of these vulnerabilities are not yet known.

Adobe has eliminated seven vulnerabilities in After Effects, five of which the manufacturer identifies as critical. They can be exploited with prepared files to smuggle in arbitrary code and execute it with user rights. Versions up to 18.2.1 are affected.

Media Encoder up to version 15.2 has six security vulnerabilities, five of which are identified as critical. Infiltrated code can be executed with user rights. The new Media Encoder version 15.4 eliminates these vulnerabilities.

Photoshop 2020 up to version 21.2.9 and Photoshop 2021 up to version 22.4.2 include two vulnerabilities. Adobe has fixed a vulnerability classified as critical (CVE-2021-36005). A buffer overflow could introduce code and execute it with user rights. This is fixed now with updates to Photoshop 2020 02/21/10 and Photoshop 2021 04/22/3.

Premiere Pro up to and including version 15.2 has one vulnerability classified as critical. Infiltrated code could be executed with user rights. This loophole has been fixed with Premiere Pro version 15.4. Researchers have discovered two vulnerabilities identified as critical in Prelude up to version 10.0. An update to version 10.1 fixes these vulnerabilities.

Character Animator 2020 contains two vulnerabilities, one of which Adobe has classified as critical. Versions up to 4.2 are affected, an update to version 4.4 eliminates the gaps. And Adobe fixed a medium risk vulnerability in Audition up to version 14.2. The manufacturer has provided an update to version 14.4 for this purpose.