Download the August 2022 Adobe Patch Tuesday updates

by Alexandru Poloboc
Alexandru Poloboc
Alexandru Poloboc
News Editor
With an overpowering desire to always get to the bottom of things and uncover the truth, Alex spent most of his time working as a news reporter, anchor,... read more
Affiliate Disclosure
  • Are you waiting on your monthly Patch Tuesday update rollout?
  • Adobe has just finished releasing a new set of patches today.
  • All the download links you need are right here in this article.
adobe

Yes, we actually already know that many of you are waiting for the Patch Tuesday monthly batch of security updates and we’re here to make it a bit easier for you to find what you’re looking for.

You should know that Microsoft isn’t the only company that has such a rollout on a monthly basis. So, in this article, we’re going to talk about Adobe and some of the patches for their products.

As we’re pretty sure you know by now, we will also include links to the download source, so you don’t have to scour the internet to find them.

Adobe releases updates for 25 CVEs

Before we get into it, let’s also take a look at what happened in July 2022, when Adobe released 27 CVEs in four patches for Acrobat and Reader, Photoshop, RoboHelp, and Adobe Character Animator.

The highlight of last month’s release was definitely the Acrobat and Reader update which addressed a combination of 22 different Critical- and Important-rated bugs.

It goes without saying that the most severe of these could allow code execution if an attacker convinces a target to open a specially crafted PDF document.

Now, let’s get back to the present and explore what the company has prepared for its users as a part of the August batch of patches.

Acrobat Reader

Just as last month, we will kick off this list with the update for Acrobat and Reader, which addresses three Critical-rated and four Important-rated bugs.

These above-mentioned critical vulnerabilities could allow code execution if an attacker could convince a user to open a specially crafted file.

Affected versions

Product Track Affected Versions Platform
Acrobat DC  Continuous  22.001.20169 and earlier versions Windows &  macOS
Acrobat Reader DC Continuous  22.001.20169 and earlier versions
 
Windows & macOS
     
Acrobat 2020 Classic 2020            20.005.30362 and earlier versions  Windows & macOS
Acrobat Reader 2020 Classic 2020            20.005.30362 and earlier versions Windows & macOS
       
Acrobat 2017 Classic 2017 17.012.30249 and earlier versions  
       
Windows & macOS
Acrobat Reader 2017 Classic 2017 17.012.30249 and earlier versions  
  
Windows & macOS

Commerce

Next, let’s take a look at the seven fixes that were released for the Commerce app, which actually includes four Critical-rated bugs.

You should know that two of these could allow code execution and two could indeed lead to a privilege escalation.

Needless to say, the XML injection bug fixed by this has the highest CVSS of Adobe’s release at 9.1.

Affected versions

Product Version Platform
 Adobe Commerce 2.4.3-p2 and earlier versions   All
2.3.7-p3 and earlier versions   All
Adobe Commerce 2.4.4 and earlier versions   All
Magento Open Source 2.4.3-p2 and earlier versions        All
2.3.7-p3 and earlier versions All
Magento Open Source 2.4.4 and earlier versions   All

Illustrator

You surely want to also hear about the patch that was issued for Illustrator, one that contains two Critical and two Important fixes for some nasty bugs submitted.

The most severe out of these above-mentioned application bugs could lead to code execution and memory leak. when opening a specially crafted file.

Affected versions

Product Version Platform
Illustrator 2022 26.3.1 and earlier versions  Windows and macOS
Illustrator 2021 25.4.6 and earlier versions  Windows and macOS

FrameMaker

Even though we haven’t seen this adobe software in the Patch Tuesday bulletin for quite some time, know that there are also six FrameMaker bugs, five of which could lead to code execution.

This update addresses multiple critical and important vulnerabilities, which means a fix update was mandatory and Adobe has acknowledged and delivered.

Affected versions

Product Version Platform
Adobe FrameMaker 2019 Release Update 8 and earlier   Windows
Adobe FrameMaker 2020 Release Update 4 and earlier     Windows

Premiere Elements

We are going to conclude this list by saying that there’s only a single Critical-rated CVE in the Premier Elements patch, which is resulting from an uncontrolled search path element.

The company wants us to know that successful exploitation could lead to privilege escalation
in the context of the current user.      

Affected versions

Product Version Platform
Adobe Premiere Elements 2022 (Version 20.0)  Windows and macOS

Please keep in mind that none of the bugs fixed by Adobe this month are listed as publicly known or under active attack at the time of release.

Adobe actively categorizes the majority of these updates as a deployment priority rating of 3, with the Acrobat patch being the lone exception at 2.

This is what you are looking at in terms of Patch Tuesday releases for Adobe for the month of August 2022, so hurry up and get the software.

What’s your take on this month’s release? Share your thoughts with us in the comments section below.

This article covers:Topics: