Today, Adobe issued out-of-band software updates for After Effects and Media Encoder applications that fix as many as two new serious flaws.

Both serious flaws exist owing to out-of-bounds write memory corruption problems and can be misused to perform arbitrary code on beleaguered systems by deceiving victims into opening a particularly crafted file using the affected software.

The bug, CVE-2020-3765, was revealed by security researcher Matt Powell and reported to Adobe via Trend Micro Zero Day Initiative project.

The second bug, CVE-2020-3764, however, that impacted Adobe Media Encoder, software for encoding and compressing audio or video files, was revealed by Canadian security researcher Francis Provencher.

None of the security susceptibilities repaired in this batch of Adobe updates were publicly revealed or found being misused in the wild, since no such evidence was found by the company.

Nevertheless, Windows and macOS users are still highly recommended to download and install the latest versions of the affected software to defend their systems before hackers begin exploiting them.

Last week, Adobe released patches for as many as 42 newly revealed susceptibilities, 35 of which are serious in severity.

Leave a Reply

Your email address will not be published. Required fields are marked *