Adobe releases patches for dozens of vulnerabilities affecting suite of programs

Tech giant Adobe released more than 30 patches this week to address vulnerabilities affecting Acrobat, Reader, and other popular software.

Sixteen of the bugs are rated as critical, and exploitation of some of them could result in an attacker having administrative privileges and the ability to access data, install programs and create new accounts. There is no evidence that any of the vulnerabilities have been exploited, the company said.

Adobe released three sets of patches, warning that exploitation of the vulnerabilities affecting Adobe Reader and Acrobat “could lead to application denial-of-service, security feature bypass, memory leak and arbitrary code execution.”

Vulnerabilities affecting Adobe Commerce and Magento Open Source, another e-commerce tool, carried risk of “arbitrary code execution, privilege escalation and arbitrary file system read.”

The company also released patches for vulnerabilities affecting the 3D design program Adobe Dimension, which also carried the risk of arbitrary code execution.

Last month, Adobe released patches for exploited vulnerabilities impacting its web development software ColdFusion. The security flaws prompted the Cybersecurity and Infrastructure Security Agency to release an advisory warning users to download the update.