Adobe’s July Patch Tuesday updated its Bridge CC, Dreamweaver, and Experience Manager.
Experience Manager patched three vulnerabilities, while Bridge and Dreamweaver each updated one.
The highest rated vulnerability for each software is important, according to the Adobe advisory.
The Adobe Experience Manager updates include one reflected cross-site scripting vulnerability rated moderate, one stored cross-site scripting vulnerability rated important, and one cross-site request forgery vulnerability rated Important that could result in sensitive information disclosure.
The Adobe Bridge CC update handles an issue that occurs when parsing malformed SVG images that can result in an out-of-bounds memory read which leads to information (memory address) disclosure in the context of current user.
The Dreamweaver fix handles an insecure library loading vulnerability in the installer rated important that could lead to privilege escalation.