menu
close
close

Follow us

Social Media
Social Media
Social Media
Social Media
Social Media

Experienced a potential cyberattack or suspicious activity?

What are you looking for?
close
    home icon for breadcrumb
  1. Home
  2. Stay Alert
  3. All Threats
  4. Security Updates - Adobe
  • published 1/29/25 11:06 AM
  • updated 15 January 2025
  • 5 Min read

Security Updates - Adobe

Alert Rating

Critical

Audience

Corporations, Government, Individuals & Families

On this page

Security Updates - Adobe

Adobe has released important security updates to fix several vulnerabilities in its products. If these issues are exploited by attackers, they could allow harmful code to run on your system, potentially compromising it.

Affected Products and Vulnerabilities:

 

  • Adobe Photoshop
  • Uncontrolled Search Path Element (CVE-2025-21127) - Critical (CVSS: 7.3)
  • Integer Underflow (CVE-2025-21122) - Critical (CVSS: 7.8)

 

  • Adobe Substance 3D Stager
  • Stack-based Buffer Overflow (CVE-2025-21128) - Critical (CVSS: 7.8)
  • Heap-based Buffer Overflow (CVE-2025-21129) - Critical (CVSS: 7.8)
  • Out-of-bounds Write (CVE-2025-21130, CVE-2025-21131, CVE-2025-21132) - Critical (CVSS: 7.8)

 

  • Adobe Illustrator on iPad
  • Integer Underflow (CVE-2025-21133, CVE-2025-21134) - Critical (CVSS: 7.8)
  • Adobe Animate
  • Integer Underflow (CVE-2025-21135) - Critical (CVSS: 7.8)

 

  • Adobe Substance 3D Designer
  • Out-of-bounds Write (CVE-2025-21136, CVE-2025-21138) - Critical (CVSS: 7.8)
  • Heap-based Buffer Overflow (CVE-2025-21137, CVE-2025-21139) - Critical (CVSS: 7.8)
  • Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code on the affected systems, potentially leading to full system compromise.
     

Attachments

Security Updates - Adobe.pdf

0.20 MB

Take Action

Protect yourself
  • Update Adobe Products: Immediately apply the latest security updates to all Adobe software on your system. These updates fix critical vulnerabilities and help protect your device from potential attacks.
  • Enable Automatic Updates: Turn on automatic updates for your Adobe products to ensure you receive the latest security patches as soon as they are released.

Attachments

Stay Connected

Follow our channels
Follow our social media channels to stay up to date.
Social Icon Social Icon Social Icon Social Icon Social Icon

Take Action

Spread Awareness

Share this threat to raise awareness and help others stay alert

GET INVOLVED

Make a Difference
Get involved with CSC and play a part in safeguarding the UAE's digital landscape.

Other Threats

20 January 2025

Alert rating

Critical

Critical Vulnerability in F5 Traffix SDC

A critical vulnerability has been discovered in F5 Traffix SDC, linked to Apache Tomcat, which could allow attackers to gain unauthorized access to compromised systems.

Protecting

Corporations, Government

share share

17 January 2025

Alert rating

High

Security Updates - NVIDIA

NVIDIA has released security updates to address multiple vulnerabilities in the NVIDIA Container Toolkit and NVIDIA GPU Operator.

Protecting

Corporations, Government

share share

16 January 2025

Alert rating

Critical

Critical Vulnerability in FortiSwitch Devices

A critical vulnerability (CVE-2023-37936) has been discovered in multiple versions of Fortinet FortiSwitch devices. This vulnerability, classified as a use of hard-coded cryptographic key [CWE-321], allows a remote unauthenticated attacker in possession of the key to execute unauthorized code via crafted cryptographic request.

Protecting

Corporations, Government

share share
Report an Incident
Get Involved

Follow us

Social Media
Social Media
Social Media
Social Media
Social Media

© 2025 CYBER SECURITY COUNCIL UAE. All rights reserved.

Privacy Policy Terms & Conditions