• About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us
AimactGrow
  • Home
  • Technology
  • AI
  • SEO
  • Coding
  • Gaming
  • Cybersecurity
  • Digital marketing
No Result
View All Result
  • Home
  • Technology
  • AI
  • SEO
  • Coding
  • Gaming
  • Cybersecurity
  • Digital marketing
No Result
View All Result
AimactGrow
No Result
View All Result

Adobe Releases Patch Fixing 254 Vulnerabilities, Closing Excessive-Severity Safety Gaps

Admin by Admin
June 10, 2025
Home Cybersecurity
Share on FacebookShare on Twitter


Jun 10, 2025Ravie LakshmananVulnerability / Cloud Safety

Adobe on Tuesday pushed safety updates to handle a complete of 254 safety flaws impacting its software program merchandise, a majority of which have an effect on Expertise Supervisor (AEM).

Of the 254 flaws, 225 reside in AEM, impacting AEM Cloud Service (CS) in addition to all variations previous to and together with 6.5.22. The problems have been resolved in AEM Cloud Service Launch 2025.5 and model 6.5.23.

“Profitable exploitation of those vulnerabilities may end in arbitrary code execution, privilege escalation, and safety characteristic bypass,” Adobe mentioned in an advisory.

Virtually all of the 225 vulnerabilities have been categorized as cross-site scripting (XSS) vulnerabilities, particularly a mixture of saved XSS and DOM-based XSS, that might be exploited to attain arbitrary code execution.

Adobe has credited safety researchers Jim Inexperienced (green-jam), Akshay Sharma (anonymous_blackzero), and lpi for locating and reporting the XSS flaws.

Essentially the most extreme of the issues patched by the corporate as a part of this month’s replace considerations a code execution flaw in Adobe Commerce and Magento Open Supply.

Cybersecurity

The critical-rated vulnerability, CVE-2025-47110 (CVSS rating: 9.1) is a mirrored XSS vulnerability that would end in arbitrary code execution. Additionally addressed is an improper authorization flaw (CVE-2025-43585, CVSS rating: 8.2) that would result in a safety characteristic bypass.

The following variations are impacted –

  • Adobe Commerce (2.4.8, 2.4.7-p5 and earlier, 2.4.6-p10 and earlier, 2.4.5-p12 and earlier, and a couple of.4.4-p13 and earlier)
  • Adobe Commerce B2B (1.5.2 and earlier, 1.4.2-p5 and earlier, 1.3.5-p10 and earlier, 1.3.4-p12 and earlier, and 1.3.3-p13 and earlier)
  • Magento Open Supply (2.4.8, 2.4.7-p5 and earlier, 2.4.6-p10 and earlier, 2.4.5-p12 and earlier)

Of the remaining updates, 4 relate to code execution flaws in Adobe InCopy (CVE-2025-30327, CVE-2025-47107, CVSS scores: 7.8) and Substance 3D Sampler (CVE-2025-43581, CVE-2025-43588, CVSS scores: 7.8).

Whereas not one of the bugs have been listed as publicly identified or exploited within the wild, customers are suggested to replace their situations to the most recent model to safeguard in opposition to potential threats.

Discovered this text fascinating? Observe us on Twitter  and LinkedIn to learn extra unique content material we publish.



Tags: AdobeClosingfixingGapsHighSeverityPatchReleasesSecurityVulnerabilities
Admin

Admin

Next Post
What AI will get improper about your web site, and why it’s not your fault: meet llms.txt  • Yoast

What AI will get improper about your web site, and why it’s not your fault: meet llms.txt  • Yoast

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended.

US FCC Eases Router Ban for Cable ISPs

US FCC Eases Router Ban for Cable ISPs

June 16, 2026
What Is It & Find out how to Get One

What Is It & Find out how to Get One

March 24, 2026

Trending.

Nsfw Chatgpt Options – Examples I’ve Used

Nsfw Chatgpt Options – Examples I’ve Used

October 13, 2025
ModeloRAT and Mistic Backdoor Exercise Linked to Ransomware Preliminary Entry Dealer

ModeloRAT and Mistic Backdoor Exercise Linked to Ransomware Preliminary Entry Dealer

June 24, 2026
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Acquire Root Entry

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Acquire Root Entry

June 25, 2026
Web Information Caps Defined: The right way to Keep away from Overages and Discover Limitless Plans

Web Information Caps Defined: The right way to Keep away from Overages and Discover Limitless Plans

September 23, 2025
Hijacked npm and Go Packages Use VS Code Duties to Deploy Python Infostealer

Hijacked npm and Go Packages Use VS Code Duties to Deploy Python Infostealer

June 29, 2026

AimactGrow

Welcome to AimactGrow, your ultimate source for all things technology! Our mission is to provide insightful, up-to-date content on the latest advancements in technology, coding, gaming, digital marketing, SEO, cybersecurity, and artificial intelligence (AI).

Categories

  • AI
  • Coding
  • Cybersecurity
  • Digital marketing
  • Gaming
  • SEO
  • Technology

Recent News

Son of Rome Had Plans To Be Xbox’s Murderer’s Creed

Son of Rome Had Plans To Be Xbox’s Murderer’s Creed

July 11, 2026
10 Finest Cell Occasion Apps for 2026: My Prime Picks

8 Finest Word Taking Apps I Suggest for 2026

July 11, 2026
  • About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us

© 2025 https://blog.aimactgrow.com/ - All Rights Reserved

No Result
View All Result
  • Home
  • Technology
  • AI
  • SEO
  • Coding
  • Gaming
  • Cybersecurity
  • Digital marketing

© 2025 https://blog.aimactgrow.com/ - All Rights Reserved