Adobe Monthly Security Update (June 2025)
Release Date: 11 Jun 2025
RISK: Medium Risk
TYPE: Clients - Productivity Products
Adobe has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes | Details (including CVE) |
| Adobe InCopy |  Medium Risk | Remote Code Execution | APSB25-41 | |
| Adobe Experience Manager | Medium Risk | Elevation of Privilege Remote Code Execution Cross-site Scripting Security Restriction Bypass | APSB25-48 | |
| Adobe Commerce | Medium Risk | Cross-site Scripting Remote Code Execution Security Restriction Bypass Elevation of Privilege | APSB25-50 | |
| Adobe InDesign | Medium Risk | Remote Code Execution Information Disclosure Denial of Service | APSB25-53 | |
| Substance 3D Sampler | Medium Risk | Remote Code Execution | APSB25-55 | |
| Adobe Acrobat and Reader | Medium Risk | Remote Code Execution Information Disclosure Denial of Service Security Restriction Bypass | APSB25-57 | |
| Substance 3D Painter | Medium Risk | Remote Code Execution | APSB25-58 |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 0
Number of 'Medium Risk' product(s): 7
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': Medium Risk
Impact
- Remote Code Execution
- Elevation of Privilege
- Cross-Site Scripting
- Security Restriction Bypass
- Information Disclosure
- Denial of Service
System / Technologies affected
- Adobe InCopy 20.2 and earlier versions
- Adobe InCopy 19.5.3 and earlier versions
- Adobe Experience Manager (AEM) AEM Cloud Service (CS)
- Adobe Experience Manager (AEM) 6.5.22 and earlier versions
- Adobe Commerce 2.4.8 2.4.7-p5 and earlier versions
- Adobe Commerce B2B 1.5.2 and earlier versions
- Magento Open Source 2.4.8 2.4.7-p5 and earlier versions
- Adobe InDesign ID20.2 and earlier versions
- Adobe InDesign ID19.5.3 and earlier versions
- Adobe Substance 3D Sampler 5.0 and earlier versions
- Acrobat DC 25.001.20521 and earlier versions
- Acrobat Reader DC 25.001.20521 and earlier versions
- Acrobat 2024 24.001.30235 and earlier versions
- Acrobat 2020 20.005.30763 and earlier versions
- Acrobat Reader 2020 20.005.30763 and earlier versions
- Adobe Substance 3D Painter 11.0.1 and earlier versions
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.
沒有留言:
發佈留言