Learn Search

Search across all Learn content

← Back to Security Research
Adobe Critical Security Updates October 2021

Adobe Critical Security Updates October 2021

Adobe has finally released October 2021 security updates providing fixes for 66 critical vulnerabilities in Adobe After Effects, Premiere Pro, Photoshop, etc. A total of 92 security vulnerabilities have been finally patched in this release. However most of these detected vulnerabilities could lead t...

Oct 27, 2021By Mohamed Faiz3 min read

Adobe has finally released October 2021 security updates providing fixes for 66 critical vulnerabilities in Adobe After Effects, Premiere Pro, Photoshop, etc. A total of 92 security vulnerabilities have been finally patched in this release. However most of these detected vulnerabilities could lead to arbitrary code execution on successful exploitation. These flaws mainly affect Windows and macOS platforms. Moreover the vulnerability in Adobe XMP Toolkit SDK affects all platforms. The issues were finally reported by some members of the Topsec Alpha Team using a vulnerability scanning tool.

Therefore, Adobe After Effects, Bridge, and Animate received fixes for 9 critical vulnerabilities each. Then, adobe Character Animator and Premiere Pro received fixes for 3 critical vulnerabilities each. Furthermore, Adobe Illustrator, InDesign, and Photoshop received fixes for 2 critical vulnerabilities each and Adobe Media Encoder and XMP Toolkit SDK received fixes for 4 critical vulnerabilities each. Similarly, Adobe Audition received fixes for six critical vulnerabilities. Initially Adobe Prelude received fixes for seven critical vulnerabilities. Adobe Lightroom Classic finally received fixes for one critical vulnerability. Finally, adobe Premiere Elements received fixes for five critical vulnerabilities through Adobe Security Updates. A patch management solution is essential here to fix the vulnerabilities.

Adobe Security Update Summary for October 2021

Product Information:

1)Product: Adobe After EffectsAdvisory/CVEs: APSB21-79Severity: Critical and ImportantAffected Version: 18.4.1 and earlier versionsImpact: Arbitrary code execution, Application denial-of-service

2)Product: Adobe AuditionAdvisory/CVEs:APSB21-92Severity: Critical and ImportantAffected Version: 14.4 and earlier versionsImpact: Arbitrary code execution, Application denial of service

3)Product: Adobe BridgeAdvisory/CVEs: APSB21-94Severity: CriticalAffected Version: 11.1.1 and earlier versionsImpact: Arbitrary code execution and Memory leak

4)Product: Adobe Character AnimatorAdvisory/CVEs: APSB21-95Severity: Critical, Important, and ModerateAffected Version: 4.4 and earlier versionsImpact: Arbitrary code execution and file service reads, privilege escalation, and Application denial of service

5)Product: Adobe PreludeAdvisory/CVEs: APSB21-96Severity: Critical and ImportantAffected Version: 10.1 and earlier versionsImpact: Arbitrary code execution, Memory leak, and Application denial of service

6)Product: Adobe Lightroom ClassicAdvisory/CVEs: APSB21-97Severity: CriticalAffected Version: 10.3 and earlier versionsImpact: Arbitrary code execution

7)Product: Adobe IllustratorAdvisory/CVEs: APSB21-98Severity: Critical and ImportantAffected Version: 25.4.1 and earlier versionsImpact: Arbitrary code execution, Memory leak, and Application denial of service

8)Product: Adobe Media EncoderAdvisory/CVEs: APSB21-99Severity: Critical and ImportantAffected Version: 15.4.1 and earlier versionsImpact: Arbitrary code execution, Memory leak, and Application denial of service

9)Product: Adobe Premiere ProAdvisory/CVEs: APSB21-100Severity: Critical and ImportantAffected Version: 15.4.1 and earlier versionsImpact: Arbitrary code execution, privilege escalation, and Application denial of service

10)Product: Adobe AnimateAdvisory/CVEs: APSB21-105Severity: Critical and ImportantAffected Version: 21.0.9 and earlier versionsImpact: Arbitrary code execution and privilege escalation

11)Product: Adobe Premiere ElementsAdvisory/CVEs: APSB21-106Severity: Critical and ImportantAffected Version: 2021 [build 19.0 (20210809.daily.2242976) and earlier versions.]Impact: Arbitrary code execution, Memory leak, and Application denial of service

12)Product: Adobe InDesignAdvisory/CVEs: APSB21-107Severity: Critical and ImportantAffected Version: 16.4 and earlier versionsImpact: Arbitrary code execution and Application denial of service

13)Product: Adobe XMP Toolkit SDKAdvisory/CVEs: APSB21-108Severity: Critical and ImportantAffected Version: 2021.07 and earlier versionsImpact: Arbitrary code execution and Application denial of service

14)Product: Adobe PhotoshopAdvisory/CVEs: APSB21-109Severity: Critical and ModerateAffected Version: 22.5.1 and earlier versionsImpact: Arbitrary code execution and privilege escalation

In conclusion, the Adobe Security Updates fixed all these issues.

SanerNow VM detects these vulnerabilities. Therefore Use SanerNow and keep your systems updated and secure.

Adobe Critical Security Updates October 2021 | SecPod