Issued: Thursday, 10 March, 2022 |
Last Revision: Thursday, 10 March, 2022 |
Vendor: |
Product: |
Severity Level: |
Adobe has issued security update for March 2022, which address critical and important vulnerabilities in its products. This month update is comparatively quite small in compare to last few months.
It appears that none of Adobe's bugs fixed this month are publicly known or under active attack.
Products that are patched in this month security update includes- Adobe Photoshop, Adobe Illustrator 2022, and Adobe After Effects.
Problem of memory leak and arbitrary code execution has been fixed in this month update.
CVE/Vulnerability | Description | Severity |
CVE-2022-23187 | Arbitrary code execution | Critical |
CVE-2022-24094 | Arbitrary code execution | Critical |
CVE-2022-24095 | Arbitrary code execution | Critical |
CVE-2022-24096 | Arbitrary code execution | Critical |
CVE-2022-24097 | Arbitrary code execution | Critical |
Table 1: Vulnerability details
Affected Product(s) | Version | Platform | |
Photoshop 2021 | 22.5.5 and earlier versions | Windows and macOS | |
Photoshop 2022 | 23.1.1 and earlier versions |
| Windows and macOS |
| |||
Illustrator 2022 | 26.0.3 and earlier versions | Windows and macOS | |
Adobe After Effects | 22.2 and earlier versions | Windows and macOS | |
Adobe After Effects | 18.4.4 and earlier versions | Windows and macOS | |
Table 2: Vulnerable versions
Organizations are strongly encouraged to review and apply appropriate update using the vendor provided instruction, particularly patches for critical vulnerabilities.