The Indian Computer Emergency Response Team highlighted multiple Adobe software product vulnerabilities in the most recent cyber safety advisory, which was published on October 16, 2024.
Because they pose significant threats to users, CERT-In has labeled these discovered vulnerabilities as high threat level. The government’s security measures warn that hackers may be able to exploit specific system flaws and gain unauthorized access to sensitive data if these vulgarities are taken advantage of.
Government Warns against Adobe Software Products
Source: Google
Out-of-bounds reads, integer overflow errors and improper authentication and authorization mechanisms are just a few of the technical flaws that were found in Adobe Software products, according to CERT-In. These issues can lead to a wide range of dangers, including the ability for malicious code to be executed, critical security features to be bypassed, arbitrary file reading, and memory leaks in the system being targeted. Data breaches, financial losses, and harm to a person’s reputation could all result from this.
Which Abode Software Products are Most Affected?
Users of Adobe FrameMaker, InDesign, InCopy, Lightroom, Animate, and Adobe Commerce are most likely to be affected by the vulnerabilities that CERT-In discovered across a wide range of Adobe products. Explicit variants in danger include:
- FrameMaker from Adobe Version 6 and earlier of 2020; 2022 Delivery Update 4 and prior (Windows)
- Adobe InDesign: ID19.4 and prior; Adobe InCopy ID18.5.3 and earlier (Windows and macOS): 19.4 and prior; Lightroom version 18.5.3 and earlier (Windows and macOS): 7.4.1 and before; Adobe Animate: Lightroom Classic 13.5 and earlier Before 23.0.7 in 2023; 2024 24.0.4 and prior (Windows and macOS)
- Adobe Trade: a variety of versions, including 2.4.7-p2 and earlier, in various Open Source and B2B editions.
How To Protect Your System
Source: Google
To shield against these weaknesses, CERT-In is encouraging clients to make a quick move and Update their Programming projects. This is the best guard to apply the most recent fixes and updates delivered by Adobe. For specific software-specific updates, users should check the Adobe Security Bulletin.
In addition, it is recommended to:
— Check and adjust Adobe Software products’ security settings frequently. Activate features that boost security against file uploads and unauthorized access.
— Send antivirus programming to identify any uncommon action inside Adobe Software Product. Early location can limiting possible harm to your frameworks in the future.
— Consistently reinforce significant documents and information to get areas. This guarantees that crucial data can be restored without significant disruption even in the event of a cyberattack.
“Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, gain elevated privileges, bypass security features, read arbitrary files, and cause memory leaks on the target system,” says CERT-In.
