9VSA-00100-001 CSIRT shares updates for Adobe products

Summary

The Computer Security Incident Response Team, CSIRT, shares information provided by Adobe, regarding vulnerabilities that affect its products.

Vulnerability

CVE-2019-8256

CVE-2019-8255

CVE-2019-8253

CVE-2019-8254

CVE-2019-16449

CVE-2019-16456

CVE-2019-16457

CVE-2019-16458

CVE-2019-16461

CVE-2019-16465

CVE-2019-16450

CVE-2019-16454

CVE-2019-16445

CVE-2019-16448

CVE-2019-16452

CVE-2019-16459

CVE-2019-16464

CVE-2019-16451

CVE-2019-16462

CVE-2019-16446

CVE-2019-16455

CVE-2019-16460

CVE-2019-16463

CVE-2019-16444

CVE-2019-16453

Vulnerability

CVE-2019-8256

Impact

Escalation of privileges

Product Affected

ColdFusion 2018 Update 6 and earlier versions

Mitigation

Apply updates to the versions published by the manufacturer as appropriate.

Link

https://helpx.adobe.com/security/products/coldfusion/apsb19-58.html

Vulnerability

CVE-2019-8255

Impact

Arbitrary code execution

Product Affected

Brackets, version 1.14 and earlier

Mitigation

Apply updates to the versions published by the manufacturer as appropriate.

Link

https://helpx.adobe.com/security/products/brackets/apsb19-57.html

Vulnerability

CVE-2019-8253

CVE-2019-8254

Impact

Arbitrary code execution.

Product Affected

Photoshop CC, versions:

0.7 and earlier
0.1 and earlier

Mitigation

Apply updates to the versions published by the manufacturer as appropriate.

Link

https://helpx.adobe.com/security/products/photoshop/apsb19-56.html

Vulnerability

CVE-2019-16449 CVE-2019-16454 CVE-2019-16462

CVE-2019-16456 CVE-2019-16445 CVE-2019-16446

CVE-2019-16457 CVE-2019-16448 CVE-2019-16455

CVE-2019-16458 CVE-2019-16452 CVE-2019-16460

CVE-2019-16461 CVE-2019-16459 CVE-2019-16463

CVE-2019-16465 CVE-2019-16464 CVE-2019-16444

CVE-2019-16450 CVE-2019-16451 CVE-2019-16453

Impact

Various vulnerabilities affect the Acrobat product in its different versions, of which they would allow:

Arbitrary code execution
Information divulgation
Escalation of privileges

Product Affected

Acrobat DC, version 2019.021.20056 and earlier, for Windows and macOS
Acrobat Reader DC, version 2019.021.20056 and earlier, for Windows and macOS
Acrobat 2017, version 2017.011.30152 and earlier, for Windows
Acrobat 2017, version 2017.011.30155 and earlier, for macOS
Acrobat Reader 2017, version 2017.011.30152 and earlier, for Windows and macOS
Acrobat 2015, version 2015.006.30505 and earlier, for Windows and macOS
Acrobat Reader 2015, version 2015.006.30505 and earlier, for Windows and macOS

Mitigation

Apply updates to the versions published by the manufacturer as appropriate.

Links

https://helpx.adobe.com/security/products/acrobat/apsb19-55.html