Adobe Security Bulletin – April 2025
Originally posted: April 8, 2025
Adobe release various patches for the multiple products
Severity: Critical /High
- APSB25-15 : Security update available for Adobe ColdFusion
- APSB25-23 : Security update available for Adobe After Effects
- APSB25-24 : Security update available for Adobe Media Encoder
- APSB25-25 : Security update available for Adobe Bridge
- APSB25-26 : Security update available for Adobe Commerce
- APSB25-27 : Security update available for Adobe AEM Forms
- APSB25-28 : Security update available for Adobe Premiere Pro
- APSB25-30 : Security update available for Adobe Photoshop
- APSB25-31 : Security update available for Adobe Animate
- APSB25-32 : Security update available for Adobe AEM Screens
- APSB25-33 : Security update available for Adobe FrameMaker
- APSB25-34 : Security update available for Adobe XMP Toolkit SDK
APSB25-15 : Security update available for Adobe ColdFusion
Summary: Adobe has released security updates for ColdFusion versions 2025, 2023 and 2021. These updates resolve critical and important vulnerabilities that could lead to arbitrary file system read, arbitrary code execution and security feature bypass. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-23 : Security update available for Adobe After Effects
Summary: Adobe has released an update for Adobe After Effects for Windows and macOS. This update addresses critical and important security vulnerabilities. Successful exploitation could lead to arbitrary code execution, memory leak and application denial-of-service in the context of the current user. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-24 : Security update available for Adobe Media Encoder
Summary: Adobe has released an update for Adobe Media Encoder. This update resolves critical vulnerabilities that could lead to arbitrary code execution.
Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-25 : Security update available for Adobe Bridge
Summary: Adobe has released a security update for Adobe Bridge. This update addresses a critical vulnerability that could lead to arbitrary code execution.
Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-26 : Security update available for Adobe Commerce
Summary: Adobe has released a security update for Adobe Commerce and Magento Open Source. This update resolves important and moderate vulnerabilities. Successful exploitation could lead to security feature bypass, privilege escalation and application denial-of-service. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-27 : Security update available for Adobe AEM Forms
Adobe has released security updates for AEM Forms on JEE versions for a dependency on vulnerable Third-Party Component . This dependency update resolves an important vulnerability that could lead to path traversal and case sensitive match exception. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-28 : Security update available for Adobe Premiere Pro
Summary: Adobe has released updates for Adobe Premiere Pro for Windows and macOS. This update addresses a critical vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-30 : Security update available for Adobe Photoshop
Summary: Adobe has released an update for Photoshop for Windows and macOS. This update resolves a critical vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-31 : Security update available for Adobe Animate
Summary: Adobe has released an update for Adobe Animate. This update resolves critical and important vulnerabilities Successful exploitation could lead to arbitrary code execution and memory leak. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-32 : Security update available for Adobe AEM Screens
Summary: Adobe has released security updates for AEM Screens. This vulnerability resolves an important vulnerability that could lead to arbitrary code execution. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-33 : Security update available for Adobe FrameMaker
Summary: Adobe has released a security update for Adobe FrameMaker. This update addresses critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution, memory leak and application denial-of-service. Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
APSB25-34 : Security update available for Adobe XMP Toolkit SDK
Summary: Adobe has released updates for XMP-Toolkit-SDK. This update resolves important vulnerabilities. Successful exploitation could lead to memory leak.
Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
NOTE: The information is provide is on “as is “ basis, without assurance of any kind .
Revision history
- 10th-Dec-24 – first advisory released. — fix patch released
- 23rd-Dec-24- update advisory – APSB24-107 added to the advisory
- 8th-Apr-25-Update advisory
About The Author
