Adobe released security updates for critical vulnerabilities in Adobe Digital Editions and Photoshop CC. Successful exploitation of either product could lead to arbitrary code execution in the context of the current user.
One vulnerability is in Adobe Digital Editions for releases 184.108.40.206749 and below.
The vulnerability is a heap overflow that could cause execution of arbitrary code. The case number for the vulnerability labeled critical is CVE-2019-7095.
Users can mitigate the Adobe Digital Editions vulnerability by downloading 220.127.116.11048.
The other vulnerability is in Photoshop CC for Windows and macOS. The update resolves a critical vulnerability in Photoshop CC 19.1.7 (and earlier 19.x versions) as well as 20.0.2 (and earlier 20.x versions).
The case number for the vulnerability labeled critical is CVE-2019-7094.
Adobe recommends updating via the Creative Cloud desktop app’s update mechanism.
Users should download the newest version of Photoshop CC 19.1.18 or 20.0.4.