At least 29 security vulnerabilities have been fixed by Adobe developers in their corporate product line, releasing the first batch of security fixes for 2023.
The most notable update for the widely distributed Adobe Acrobat and Reader software fixes critical flaws that expose Windows and macOS users to RCE attacks.
According to Adobe PSIRT, security issues also affect Acrobat DC, Acrobat Reader DC, Acrobat 2020 and Acrobat Reader 2020. Successful operation can lead to RCE, DoS, privilege escalation and memory leak.
The company has documented 15 of the most serious security flaws in the Acrobat and Reader programs and urges users to install the available updates immediately.
Adobe has also released fixes for critical bugs in the Adobe InDesign product, warning that successful operation can lead to RCE, DoS and memory leaks. At the same time, six documented vulnerabilities affect users on Windows and macOS platforms.
In addition, the January patch includes fixes for serious bugs in Adobe InCopy and Adobe Dimension. These flaws can expose Windows and macOS users to arbitrary code execution and memory leaks.
Adobe notes that it is not aware of any exploits for any of the fixed vulnerabilities.