Adobe released the security updates to patch a total of 42 newly discovered vulnerabilities in its five of the widely used software. 35 of these vulnerabilities were given the severity as critical.
The five affected software include Adobe Framemaker, Adobe Acrobat and Reader, Adobe Flash Player, Adobe Digital Edition and Adobe Experience Manager. Out of these, four are vulnerable to at least one critical arbitrary code execution vulnerability that could let attackers to take complete control of vulnerable systems.
Adobe Framemaker for Windows is an advanced document processing software and it has 21 flaws which includes critical buffer error, heap overflow, memory corruption and out-of-bounds write issues, leading to code execution attacks.
Adobe Acrobat and Reader for Windows and macOS contain 12 similar critical code execution vulnerabilities together with 3 other important information disclosure and a moderate memory leak issue.
The flaw in Adobe Flash Player include critical arbitrary code execution flaw which when exploited could let a hacker to compromise targeted Windows, macOS, Linux, and Chrome OS-based computers.
Adobe Digital Edition is an e-book reader software program and it contained a new critical arbitrary code execution flaw and an important information disclosure issue.
Adobe Experience Manager which is a comprehensive content management solution for building websites, mobile apps, and forms did not have any critical flaw, but has patched an important denial-of-service (DoS) issue that affects the versions 6.5 and 6.4.
These vulnerabilities that are fixed now are not publicly disclosed or being found exploited in the wild. However, it is highly recommended to download and install the latest versions of the affected software.
If auto update is not enabled in your system, you can manually install the update by choosing
“Help → Check for Updates” in your Adobe software for Windows, macOS, Linux, and Chrome OS.