Software maker Adobe on Tuesday rolled out urgent security updates for multiple enterprise-facing products and warned that hackers could exploit these bugs to launch code execution attacks.
As part of its scheduled batch of Patch Tuesday updates, Adobe called attention to a pair of code execution bugs in Adobe Commerce and Magento Open Source, a product used by businesses to create and manage online stories.
The company put the two externally reported Adobe Commerce vulnerabilities in the “critical-severity” category and cautioned that successful exploitation could lead to arbitrary code execution.
Adobe also flagged security issues in the Adobe Experience Manager (AEM), documenting at least a dozen flaws that could lead to arbitrary code execution and security feature bypass.
The Adobe Media Encoder product was also updated to fix a critical, code execution bug affecting both Windows and macOS users.
Adobe also rolled out patches for memory leaks in Adobe After Effects and Adobe Protoshop and Adobe InDesign (Windows and macOS affected); and denial-of-service and code execution issues in the Adobe Animate software.
The San Jose, Calif. Company said it was not aware of in-the-wild exploitation of any of the vulnerabilities documented in this patch batch.
Related: Patch for Exploited Adobe Commerce and Magento Flaw Bypassed
Related: Magento Vulnerability Exploited to Deploy Persistent Backdoor
Related: Magento Vulnerability Increasingly Exploited to Hack Online Stores