Adobe Monthly Security Update (February 2025)
Release Date: 12 Feb 2025
RISK: Medium Risk
TYPE: Clients - Productivity Products
Adobe has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes | Details (including CVE) |
| Adobe InDesign |  Medium Risk | Remote Code Execution Information Disclosure Denial of Service | APSB25-01 | |
| Adobe Commerce | Medium Risk | Elevation of Privilege Security Restriction Bypass Remote Code Execution | APSB25-08 | |
| Substance 3D Stager | Medium Risk | Denial of Service | APSB25-09 | |
| Adobe InCopy | Medium Risk | Remote Code Execution | APSB25-10 | |
| Adobe Illustrator | Medium Risk | Remote Code Execution | APSB25-11 | |
| Substance 3D Designer | Medium Risk | Remote Code Execution | APSB25-12 | |
| Adobe Photoshop Elements | Medium Risk | Elevation of Privilege | APSB25-13 |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 0
Number of 'Medium Risk' product(s): 7
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': Medium Risk
Impact
- Remote Code Execution
- Information Disclosure
- Denial of Service
- Elevation of Privilege
- Security Restriction Bypass
System / Technologies affected
- Adobe InDesign ID20.0 and earlier versions
- Adobe InDesign ID19.5.1 and earlier versions
- Adobe Commerce 2.4.8-beta1
- Adobe Commerce 2.4.7-p3 and earlier versions
- Adobe Commerce 2.4.6-p8 and earlier versions
- Adobe Commerce 2.4.5-p10 and earlier versions
- Adobe Commerce 2.4.4-p11 and earlier versions
- Adobe Commerce B2B 1.5.0 and earlier versions
- Adobe Commerce B2B 1.4.2-p3 and earlier versions
- Adobe Commerce B2B 1.3.5-p8 and earlier versions
- Adobe Commerce B2B 1.3.4-p10 and earlier versions
- Adobe Commerce B2B 1.3.3-p11 and earlier versions
- Magento Open Source 2.4.8-beta1
- Magento Open Source 2.4.7-p3 and earlier versions
- Magento Open Source 2.4.6-p8 and earlier versions
- Magento Open Source 2.4.5-p10 and earlier versions
- Magento Open Source 2.4.4-p11 and earlier versions
- Adobe Substance 3D Stager 3.1.0 and earlier versions
- Adobe InCopy 20.0 and earlier versions
- Adobe InCopy 19.5.1 and earlier versions
- Illustrator 2025 29.1 and earlier versions
- Illustrator 2024 28.7.3 and earlier versions
- Adobe Substance 3D Designer 14.0.2 and earlier versions
- Photoshop Elements 2025.0 [build: 20240918.PSE.cae27345, 20240918.PSE.d3263bae (Mac ARM)
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.
沒有留言:
發佈留言