Categories: Computer SecuritySecurity UpdatesUncategorized

Adobe Released Security Updates & Fixed 43 Vulnerabilities in Acrobat Reader, Adobe Flash & More

Adobe security updates released for April with the fixes of 43 vulnerabilities that affected different Adobe products.

There are 8 different Adobe products are affected including Adobe Flash Player, Shockwave Player, Dreamweaver, Adobe XD CC, Adobe Experience Manager Forms, and Adobe Bridge CC.

In this case, Overall 21 adobe family vulnerabilities are fixed and 11 flaws marked as ‘Critical” severity and the Successful exploitation could lead to arbitrary code execution in the context of the current user.  

Out-of-Bounds Write	Arbitrary Code Execution	Critical	CVE-2019-7111 CVE-2019-7118 CVE-2019-7119 CVE-2019-7120 CVE-2019-7124
Type Confusion	Arbitrary Code Execution	Critical	CVE-2019-7117CVE-2019-7128
Use After Free	Arbitrary Code Execution	Critical	CVE-2019-7088CVE-2019-7112
Heap Overflow	Arbitrary Code Execution	Critical	CVE-2019-7113CVE-2019-7125

Adobe fixed all the 43 vulnerabilities for the following products.

Adobe Acrobat and Reader (APSB19-17)
Adobe Flash Player (APSB19-19)
Adobe Shockwave player (APSB19-20)
Adobe Dreamweaver (APSB19-21)
Adobe XD (APSB19-22)
Adobe InDesign (APSB19-23)
Adobe InDesign (APSB19-23)
Adobe Experience Manager Forms (APSB19-24)
Adobe Bridge CC (APSB19-25)

At this time none of the vulnerabilities are currently being exploited in the wild.

According to Adobe. “Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These update address  critical and important vulnerabilities”

“Successful exploitation could lead to arbitrary code execution in the context of the current user.”

Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.

Also, Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows, macOS and Linux update to Adobe Flash Player 32.0.0.171 via the update mechanism Adobe Flash Player Download Center.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates.

Also Read:Creating and Analyzing a Malicious PDF File with PDF-Parser Tool

Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Next Hacker Who Compromised Hundreds of Millions of Computers Sentenced to More than Six Years »

Previous « Verizon Fios Router Vulnerabilities Allows Attackers to Gain Complete Control Over the Network

Docusnap for Windows Flaw Exposes Sensitive Data to Attackers

A recently disclosed vulnerability in Docusnap's Windows client software (CVE-2025-26849) enables attackers to decrypt sensitive…

3 minutes ago

Cyber Security News

CISA Warns of Active Exploitation of Microsoft Windows Win32k Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2018-8639, a decade-old Microsoft Windows privilege…

22 minutes ago

Cyber Security News

Update Alert: Google Warns of Critical Android Vulnerabilities Under Exploit

Google’s March 2025 Android Security Bulletin has unveiled two critical vulnerabilities—CVE-2024-43093 and CVE-2024-50302—currently under limited,…

3 hours ago

Cyber Security News

BigAnt Server 0-Day Vulnerability Lets Attackers Run Malicious Code Remotely

A critical vulnerability in BigAntSoft's enterprise chat server software has exposed ~50 internet-facing systems to…

3 hours ago

Press Release

Bubba AI, Inc. is Launching Comp AI to Help 100,000 Startups Get SOC 2 Compliant by 2032.

With the growing importance of security compliance for startups, more companies are seeking to achieve…

5 hours ago

Cyber Security News

IBM Storage Virtualize Flaws Allow Remote Code Execution

Two critical security flaws in IBM Storage Virtualize products could enable attackers to bypass authentication…