Adobe has released updates that fix critical vulnerabilities in the Adobe InDesign, Framemaker, and Experience Manager. Attackers can exploit the vulnerability to execute code in the context of the current user.
The update addresses multiple critical security vulnerabilities with Adobe InDesign that allows an attacker to execute arbitrary code in the context of the user.
Adobe InDesign 15.1.1 and below are affected with the vulnerability, users are recommended to update with the 15.1.2 version.
The updates for Adobe Experience Manager (AEM) and the AEM Forms add-on package resolves Critical and Important security vulnerabilities.
Adobe Experience Manager 220.127.116.11 and earlier versions, 18.104.22.168 and earlier versions, 22.214.171.124 and earlier versions, 6.2 SP1-CFP20, and earlier versions are affected.
Security updates for Adobe Framemaker cover multiple critical vulnerabilities, successful exploitation leads to arbitrary code execution in the context of the current user.
Adobe Framemaker 2019.0.6 and below are affected with the vulnerability, users are recommended to update with 2019.0.7.