Issued: Tuesday, 21 June, 2022 |
Last Revision: Tuesday, 21 June, 2022 |
Vendor: |
Product: |
Severity Level: |
Adobe has issued security update for June 2022, which address multiple critical and important vulnerabilities in its products. It appears that none of Adobe's bugs fixed in this month are publicly known or under active attack. Adobe products that are patched in this month security update includes- Adobe Animate, Adobe Bridge, Adobe Illustrator, Adobe InCopy, Adobe InDesign, and RoboHelp Server. Adobe has fixed problem of Out-of-bounds Read, Out-of-bounds Write, Improper Input Validation, Use After Free, Heap-based Buffer Overflow, and Improper Authorization. Organizations are strongly encouraged to review and apply appropriate update using the vendor provided instruction in the “Solution” section of Adobe security bulletin, particularly patches for critical vulnerabilities
CVE/Vulnerability | Description | Severity |
CVE-2022-30664 | Arbitrary code execution | Critical |
CVE-2022-28839- CVE-2022-28849 | Arbitrary code execution | Critical |
CVE-2022-30637- CVE-2022-30649 | Arbitrary code execution | Critical |
CVE-2022-30650- CVE-2022-30657 | Arbitrary code execution | Critical |
CVE-2022-30658- CVE-2022-30663, CVE-2022-30665, CVE-2022-30660 | Arbitrary code execution | Critical |
Affected Product(s) | Versions | Platform | ||
Adobe Animate | 22.0.5 and earlier versions | Windows and macOS | ||
Adobe Bridge | 12.0.1 and earlier versions | Windows and macOS | ||
Illustrator 2021 | 25.4.5 and earlier versions | Windows and macOS | ||
Illustrator 2022 | 26.0.2 and earlier versions | Windows and macOS | ||
Adobe InCopy | 17.2 and earlier version | Windows and macOS | ||
Adobe InCopy | 16.4.1 and earlier version
| Windows and macOS |
| |
| ||||
Adobe InDesign | 16.4.1 and earlier versions
| Windows and macOS |
| |
| ||||
Adobe InDesign | 17.2.1 and earlier versions
| Windows and macOS |
| |
| ||||
RoboHelp Server | RHS 11 Update 3 and earlier versions
| Windows |
| |
| ||||