Adobe has issued a security alert regarding two critical security flaws in its renowned Photoshop image manipulation product.
Adobe said in a Tuesday statement that the serious weaknesses expose both Windows and MacOS users to code execution attacks.
The changes, which are available for Photoshop 2020 and Photoshop 2021, are sent using the software’s automated updating system.
The vulnerabilities were reported by Adobe as memory corruption concerns with CVSS scores of 7.8.
Adobe also issued warnings with updates for severe security flaws in Adobe Media Encoder (code execution, critical), as well as multiple major security flaws in Adobe Bridge and Adobe Captivate.
Adobe also released a patch for the Adobe XMP Toolkit SDK to address several code execution flaws.
“Adobe has published XMP-Toolkit-SDK upgrades.
Multiple significant and important vulnerabilities have been addressed by these upgrades.
The business stated that “successful exploitation could result in arbitrary code execution in the context of the current user.”