Advisory 59: Adobe Releases Security Updates for Multiple Products
Release Date: 12 of March 2024
Impact : HIGH / CRITICAL
TLP Rating: Clear 
CERT Vanuatu (CERTVU) and the Office of the Chief Information Officer (OGCIO) provide the following advisory.
What is it?
Adobe releases security updates to address multiple vulnerabilities in Adobe software including
What are the Systems affected?
The following Fortinet Products are affected;
- Adobe Animate 2023
Product Version Platform Adobe Animate 2023 23.0.3 and earlier versions Windows and macOs Adobe Animate 2024 24.0 and earlier versions Windows and macOs - Adobe Experience Manager (AEM)
Product Version Platform Adobe Experience Manager(AEM) AEM Cloud Service(CS) All Adobe Experience Manager(AEM) 6.5.19.0 and earlier versions All - Adobe Premier Pro
Product Version Platform Adobe Premier Pro 24.1 and earlier versions Windows and macOs Adobe Premier Pro 23.6.2 and earlier versions Windows and macOs - Adobe ColdFusion
Product Version Platform ColdFusion 2023 Update 6 and earlier versions All ColdFusion 2021 Update 12 and eralier versions All - Adobe Bridge
Product Version Platform Adobe Bridge 13.0.5 and earlier versions Windows and macOs Adobe Bridge 14.0.1 and eralier versions Windows and macOs - Adobe Lightroom
Product Version Platform Lightroom 7.1.2 and earlier versions macOs
What this means?
The vulnerabilities may allow a cyber threat actor to exploit some of these vulnerabilities to take control of an affected system.
Mitigation process
CERTVU strongly encourages administrators to review the following advisories and apply necessary security updates for Fortinet products and versions. For specific solution for each affected products, complete these tasks;
- Adobe Experience Manager (AEM) – Recommended users to update to the latest version
Product Version Platform Priority Adobe Experience Manager (AEM) AEM Cloud Service Release 2024.03 All 3 Adobe Experience Manager (AEM) 6.5.20.0 All 3 - Adobe Premiere Pro – Recommended users to update their installation to the newest via Creative Cloud desktop app’s update mechanism.
Product Version Platform Priority Adobe Premiere Pro 24.2.1 Windows and macOS 3 Adobe Premiere Pro 23.6.4 Windows and macOS 3 - Adobe ColdFusion - Recommended users to update to the latest version.
Product Version Platform Priority ColdFusion 2023 Update 7 All 3 ColdFusion 2021 Update 13 All 3 - Adobe Bridge - Recommended users to update their installation to the newest via Creative Cloud desktop app’s update mechanism.
Product Version Platform Adobe Bridge 13.0.5 and earlier version Windows and macOS Adobe Bridge 14.0.1 and earlier version Windows and macOS - Adobe Lightroom - Recommended users to update their installation to the newest via Creative Cloud desktop app’s update mechanism.
Product Version Platform Priority Lightroom 7.2 macOS as published in the Aplle App Store 3 - Adobe Lightroom - Recommended users to update their installation to the newest via Creative Cloud desktop app’s update mechanism.
Product Version Platform Priority Lightroom 23.0.4 Windows and macOS 3 Lightroom 24.0.1 Windows and macOS 3
References
- https://www.cisa.gov/news-events/alerts/2024/03/12/adobe-releases-security-updates-multiple-products
- https://helpx.adobe.com/security/products/experience-manager/apsb24-05.html
- https://helpx.adobe.com/security/products/premiere_pro/apsb24-12.html
- https://helpx.adobe.com/security/products/coldfusion/apsb24-14.html
- https://helpx.adobe.com/security/products/bridge/apsb24-15.html
- https://helpx.adobe.com/security/products/lightroom/apsb24-17.html
- https://helpx.adobe.com/security/products/animate/apsb24-19.html
- Download advisory (English): Fortinet Releases Security Updates for Multiple Products
- Download advisory (Bislama): Adobe i Rilisim olgeta Sekuriti Apdeit blong Plante Prodak
- Download advisory (French): Mises à jour de sécurité pour plusieurs produits Adobe