Adobe released patches for 80 vulnerabilities across eight products, including Adobe Commerce, Magento Open Source, Illustrator, Acrobat Reader, and Premiere Pro. The update addresses 19 Commerce/Magento flaws—including multiple high-severity privilege-escalation issues (CVE-2026-21290, CVE-2026-21361, CVE-2026-21284, CVE-2026-21311, CVE-2026-21309, and CVE-2026-21289)—and Adobe reports no known exploitation in the wild. #AdobeCommerce #MagentoOpenSource
Keypoints
- Adobe released patches for 80 vulnerabilities across eight products, including Commerce, Illustrator, Acrobat Reader, and Premiere Pro.
- Adobe fixed 19 flaws in Adobe Commerce and Magento Open Source and urges users to apply patches within 30 days.
- Six high-severity Commerce bugs were fixed, five leading to privilege escalation and one causing a security feature bypass.
- High-severity arbitrary code execution vulnerabilities were also resolved in Illustrator, Acrobat Reader, Premiere Pro, Substance 3D Stager, and the DNG SDK.
- Adobe reports no known in-the-wild exploitation and refers users to its PSIRT page for additional details.
Read More: https://www.securityweek.com/adobe-patches-80-vulnerabilities-across-eight-products/