2025年7月9日星期三

Adobe Monthly Security Update (July 2025)

Adobe Monthly Security Update (July 2025)

Release Date: 9 Jul 2025

RISK: Medium Risk

TYPE: Clients - Productivity Products

Adobe has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)
Adobe After EffectsMedium Risk Medium RiskDenial of Service
Information Disclosure
 APSB25-49
Substance 3D ViewerMedium Risk Medium RiskRemote Code Execution
Denial of Service
Information Disclosure
 APSB25-54
Adobe AuditionMedium Risk Medium RiskDenial of Service APSB25-56
Adobe InCopyMedium Risk Medium RiskRemote Code Execution APSB25-59
Adobe InDesignMedium Risk Medium RiskRemote Code Execution APSB25-60
Adobe ConnectMedium Risk Medium RiskRemote Code Execution APSB25-61
Adobe DimensionMedium Risk Medium RiskRemote Code Execution
Information Disclosure
 APSB25-63
Substance 3D StagerMedium Risk Medium RiskInformation Disclosure APSB25-64
Adobe IllustratorMedium Risk Medium RiskRemote Code Execution
Information Disclosure
Denial of Service
 APSB25-65
Adobe FrameMakerMedium Risk Medium RiskRemote Code Execution
Information Disclosure
Denial of Service
 APSB25-66
Adobe Experience Manager FormsMedium Risk Medium RiskRemote Code Execution APSB25-67
Adobe Experience Manager ScreensMedium Risk Medium RiskCross-site Scripting
Remote Code Execution
 APSB25-68
Adobe ColdFusionMedium Risk Medium RiskInformation Disclosure
Elevation of Privilege
Security Restriction Bypass
Cross-site Scripting
Remote Code Execution
Denial of Service
 APSB25-69

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 13

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk


Impact

  • Remote Code Execution
  • Elevation of Privilege
  • Cross-Site Scripting
  • Security Restriction Bypass
  • Information Disclosure
  • Denial of Service

System / Technologies affected

  • Adobe After Effects 24.6.6 and earlier versions
  • Adobe After Effects 25.2 and earlier versions
  • Adobe Substance 3D Viewer 0.22 and earlier versions
  • Adobe Audition 24.6.3 and earlier versions
  • Adobe Audition 25.2 and earlier versions
  • Adobe InCopy  19.5.3 and earlier versions
  • Adobe InCopy  20.3 and earlier versions
  • Adobe InDesign ID19.5.3 and earlier versions
  • Adobe InDesign ID20.3 and earlier versions
  • Connect Windows App 24 and earlier versions
  • Adobe Dimension 4.1.2 and earlier versions
  • Adobe Substance 3D Stager 3.1.2 and earlier versions
  • Illustrator 2024 28.7.6 and earlier versions
  • Illustrator 2025 29.5.1 and earlier versions
  • Adobe FrameMaker 2020 Release Update 8 and earlier versions
  • Adobe FrameMaker 2022 Release Update 6 and earlier versions
  • Adobe Experience Manager (AEM) Forms on JEE 6.5.23.0 and earlier versions
  • Adobe Experience Manager (AEM) Screens AEM 6.5.22 Screens FP11.4
  • ColdFusion 2021 Update 20 and earlier versions
  • ColdFusion 2023 Update 14 and earlier versions
  • ColdFusion 2025 Update 2 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier


Source


Related Link

沒有留言:

發佈留言

Adobe 每月保安更新 (2025年7月)

Adobe 每月保安更新 (2025年7月) 發佈日期: 2025年07月09日 風險: 中度風險 類型: 用戶端 - 辦公室應用 Adobe已為產品提供本月保安更新:   受影響產品 風險程度 影響 備註 詳情(包括 CVE) ...