Adobe Monthly Security Update (January 2026)

Release Date: 14 Jan 2026

RISK: Medium Risk

TYPE: Clients - Productivity Products

Adobe has released monthly security update for their products:

Vulnerable Product	Risk Level	Impacts	Notes	Details (including CVE)
Adobe Dreamweaver	Medium Risk	Remote Code Execution Data Manipulation		APSB26-01
Adobe InDesign	Medium Risk	Remote Code Execution Information Disclosure		APSB26-02
Adobe Illustrator	Medium Risk	Remote Code Execution Denial of Service		APSB26-03
Adobe InCopy	Medium Risk	Remote Code Execution		APSB26-04
Adobe Bridge	Medium Risk	Remote Code Execution		APSB26-07
Substance 3D Modeler	Medium Risk	Remote Code Execution Denial of Service Information Disclosure		APSB26-08
Substance 3D Stager	Medium Risk	Remote Code Execution		APSB26-09
Substance 3D Painter	Medium Risk	Remote Code Execution		APSB26-10
Substance 3D Sampler	Medium Risk	Remote Code Execution		APSB26-11
Adobe ColdFusion	Medium Risk	Remote Code Execution		APSB26-12
Substance 3D Designer	Medium Risk	Information Disclosure		APSB26-13

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 11

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk

Impact

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor. Please refer to 'Details' column in the above table for details of individual product update or run software update.