mickmick.net

Adobe Monthly Security Update (July 2023)

Release Date: 12 Jul 2023

RISK: Medium Risk

TYPE: Clients - Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable Product	Risk Level	Impacts	Notes	Details (including CVE)
Adobe InDesign	Medium Risk	Remote Code Execution Information Disclosure		APSB23-38
Adobe ColdFusion	Medium Risk	Security Restriction Bypass Remote Code Execution		APSB23-40

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 2

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk

---

Impact

• Remote Code Execution
• Information Disclosure
• Security Restriction Bypass

---

System / Technologies affected

• Adobe InDesign ID18.3 and earlier versions
• Adobe InDesign ID17.4.1 and earlier versions
• ColdFusion 2018 Update 16 and earlier versions
• ColdFusion 2021 Update 6 and earlier versions
• ColdFusion 2023 GA Release (2023.0.0.330468)

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

• Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update

---

Vulnerability Identifier

• https://www.cvedetails.com/vulnerability-list.php?vendor_id=53&year=2023&month=7

 

---

Source

• Adobe

---

Related Link

• https://helpx.adobe.com/security/security-bulletin.html