Friday, April 18, 2025
Follow us On Linkedin
HomeCVE/vulnerabilityAdobe Fixes 82 Vulnerabilities in Adobe Acrobat and Reader, Experience & Downloader...

Adobe Fixes 82 Vulnerabilities in Adobe Acrobat and Reader, Experience & Downloader Manager

CVE/vulnerability

Published on

By Gurubaran
Adobe released security updates

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

Adobe released security updates that cover 82 vulnerabilities in various products, out of 82 vulnerabilities 45 are rated critical and the rest of the vulnerabilities rated as important and moderate.

The security fix covers multiple Adobe products that include Adobe Acrobat and Reader, Adobe Experience Manager & Forms, and Adobe Download Manager.

Adobe Acrobat and Reader

Adobe released security updates for Windows and  macOS, the updates cover critical and  important  vulnerabilities with Adobe Acrobat and Reader.

- Advertisement - Google News

These vulnerabilities allow an attacker to execute arbitrary code with the vulnerable installations in the context of the current user.

Affected Versions

  • Acrobat DC 2019.012.20040 and earlier versions 
  • Acrobat Reader DC 2019.012.20040 and earlier versions
  • Acrobat 2017 2017.011.30148
  • Acrobat Reader 2017 2017.011.30148 and earlier versions
  • Acrobat 2015 2015.006.30503 and earlier versions 
  • Acrobat Reader 2015 2015.006.30503 and earlier versions

Updated Versions

  • Acrobat DC 2019.021.20047
  • Acrobat Reader DC 2019.021.20047
  • Acrobat DC 2017.011.30150
  • Acrobat Reader DC 2017.011.30150
  • Acrobat DC 2015.006.30504
  • Acrobat Reader DC 2015.006.30504

Adobe Experience Manager

Security Updates released for Adobe Experience Manager (AEM). The update resolves multiple vulnerabilities with AEM versions 6.3, 6.4 and 6.5.

Successful exploitation of these vulnerabilities allows an attacker to gain unauthorized access to the AEM environment.

Adobe releases updates to AEM versions 6.3, 6.4 and 6.5 and recommends to update the users.

Adobe Experience Manager Forms

With Adobe Experience Manager Forms, Adobe fixed a cross-site scripting vulnerability with the update. The vulnerability may lead to sensitive information disclosure.

Adobe recommends users update installations to the latest versions of Adobe Experience Manager Forms 6.3, 6.4 and 6.5.

Adobe Download Manager

The security update fixes Privilege Escalation vulnerability with Adobe Download Manager for Windows. Vulnerability is categorized as an important one.

Affected Version

  • Adobe Download Manager 2.0.0.363

Updated Version

  • Adobe Download Manager 2.0.0.417

Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.

Also Read

Adobe Security Update fixes Critical Vulnerabilities in Flash Player, Campaign and ColdFusion

Adobe Released Security Updates for 87 Vulnerabilities with Media Encoder, Flash, Adobe Acrobat and Reader

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Cyber Attack

Ransomware Attacks Surge 126%, Targeting Consumer Goods and Services Sector

The cybersecurity landscape witnessed a dramatic escalation in ransomware attacks, marking a concerning trend...
cyber security

CrazyHunter Hacker Group Exploits Open-Source GitHub Tools to Target Organizations

A relatively new ransomware outfit known as CrazyHunter has emerged as a significant threat,...
Cyber Attack

Threat Actors Leverage Cascading Shadows Attack Chain to Evade Detection and Hinder Analysis

A sophisticated multi-layered phishing campaign was uncovered, employing a complex attack chain known as...
cyber security

Microsoft Vulnerabilities Reach Record High with Over 1,300 Reported in 2024

The 12th Edition of the Microsoft Vulnerabilities Report has revealed a significant surge in...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

CVE/vulnerability

Critical Erlang/OTP SSH Vulnerability Allow Hackers Execute Arbitrary Code Remotely

A major security flaw has been uncovered in the widely used Erlang/OTP SSH implementation,...
CVE/vulnerability

CISA Warns of Potential Credential Exploits Linked to Oracle Cloud Hack

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a public warning following reports...
CVE/vulnerability

Critical Flaw in PHP’s extract() Function Enables Arbitrary Code Execution

A critical vulnerability in PHP’s extract() function has been uncovered, enabling attackers to execute arbitrary code...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved