Thursday, May 22, 2025
HomeComputer SecurityAdobe Published Security Updates for Flash Player, Adobe Acrobat and Photoshop

Adobe Published Security Updates for Flash Player, Adobe Acrobat and Photoshop

Published on

SIEM as a Service

Follow Us on Google News

Adobe published security updates for multiple vulnerabilities in Flash Player, Adobe Acrobat, and Photoshop that allows attackers to steal sensitive information.

APSB18-43 Photoshop CC – Adobe Security Updates

Adobe published security updates that resolve an important vulnerability in Photoshop CC 19.1.6 and earlier 19.x versions which can be exploited to steal sensitive information.

Affected Version

Photoshop CC 19.1.6 and earlier

- Advertisement - Google News

Fixed Versions

Photoshop CC 19.1.7 and 20.0

Vulnerability Details

CVE-2018-15980 – Information disclosure

APSB18-40 – Adobe Acrobat and Reader

Adobe published security updates that fix information disclosure vulnerability with Adobe Acrobat and Reader. Successful exploitation of the vulnerability leads to the inadvertent leak of the user’s hashed NTLM password.

Affected Version

Acrobat DC 2019.008.20080 and earlier versions

Acrobat Reader DC 2019.008.20080 and earlier versions

Acrobat 2017 2017.011.30105 and earlier versions

Acrobat Reader 2017 2017.011.30105 and earlier versions

Acrobat DC 2015.006.30456 and earlier versions

Acrobat Reader DC 2015.006.30456 and earlier versions

Fixed Versions

Acrobat DC 2019.008.20080 and earlier versions

Acrobat Reader DC 2019.008.20080 and earlier versions

Acrobat 2017 2017.011.30105 and earlier versions

Acrobat Reader 2017 2017.011.30105 and earlier versions

Acrobat DC 2015.006.30456 and earlier versions

Acrobat Reader DC 2015.006.30456 and earlier versions

Vulnerability Details

CVE-2018-15979 – Information disclosure

APSB18-39 – Flash Player

The security updates address important vulnerability with Adobe Flash Player 31.0.0.122 and earlier versions. An attacker could exploit the vulnerability to steal sensitive information.

Affected Version

Adobe Flash Player Desktop Runtime 31.0.0.122 and earlier versions

Adobe Flash Player for Google Chrome 31.0.0.122 and earlier versionsChrome OS

Adobe Flash Player for Edge and IE 11 31.0.0.122 and earlier versions

Fixed Versions

Adobe Flash Player Desktop Runtime 31.0.0.148 Windows, macOS

Adobe Flash Player for Google Chrome 31.0.0.148 Windows, macOS, Linux, and Chrome OS

Adobe Flash Player for Edge and IE 11 31.0.0.148 Windows 10 and 8.1

Adobe Flash Player Desktop Runtime 31.0.0.148 Linux

Vulnerability Details

CVE-2018-15978 – Information disclosure.

With the October update, Adobe fixed 86 Vulnerabilities Fixed with Adobe Security Updates for Adobe Acrobat and Reader

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

CefSharp Enumeration Tool Identifies Critical Security Issues in .NET Desktop Applications

Cybersecurity researchers and red teamers, a newly released tool named CefEnum is shedding light...

Russian Hackers Exploit Oracle Cloud Infrastructure to Target Scaleway Object Storage

Russian threat actors have been leveraging trusted cloud infrastructure platforms like Oracle Cloud Infrastructure...

Critical Vulnerability in Netwrix Password Manager Enables Authenticated Remote Code Execution

A critical security vulnerability has been discovered in Netwrix Password Secure, a widely used...

Cityworks Zero-Day Vulnerability Used by UAT-638 Hackers to Infect IIS Servers with Shell Malware

Cisco Talos has uncovered active exploitation of a zero-day remote-code-execution vulnerability, identified as CVE-2025-0994,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Critical Vulnerability in Netwrix Password Manager Enables Authenticated Remote Code Execution

A critical security vulnerability has been discovered in Netwrix Password Secure, a widely used...

Cityworks Zero-Day Vulnerability Used by UAT-638 Hackers to Infect IIS Servers with Shell Malware

Cisco Talos has uncovered active exploitation of a zero-day remote-code-execution vulnerability, identified as CVE-2025-0994,...

Linux Kernel Zero-Day SMB Vulnerability Discovered via ChatGPT

Security researcher has discovered a zero-day vulnerability (CVE-2025-37899) in the Linux kernel's SMB server...