The Indian Computer Emergency Response Team (CERT-In), the nodal agency for cybersecurity under the Ministry of Electronics and Information Technology, has issued a security alert regarding multiple vulnerabilities in several Adobe products. Labeled with a medium severity rating, the alert (CIVN-2025-0137) was published on July 1, 2025, and targets users of Adobe’s creative and document software.
Softwares affected
The vulnerabilities affect a wide range of Adobe products and versions, including:
• Adobe InCopy versions up to 20.3 and 19.5.4
• Adobe Experience Manager (AEM) up to 6.5.23 and CS release 2025.5
• Adobe Commerce and Commerce B2B versions before 2.4.8 and several sub-releases
• Magento Open Source versions before 2.4.8
• Adobe InDesign up to ID20.3 and ID19.5.4
• Adobe Substance 3D Sampler up to 5.0.3
• Adobe Acrobat and Reader for both Windows and Mac prior to builds 25.001.20531 and 25.001.20529
• Acrobat 2024 and 2020 versions prior to 24.001.30254 and 20.005.30744
• Adobe Substance 3D Painter before 11.0.2
What’s the risk?
CERT-In warns that these vulnerabilities could allow attackers to bypass security restrictions, execute arbitrary code, perform cross-site scripting attacks, escalate privileges, access sensitive information, or even cause denial-of-service (DoS) conditions. The flaws largely stem from memory corruption, input validation errors, and improper handling of user data.
Who is at risk?
The advisory is meant for system administrators, security teams, and end-users of Adobe software. It especially concerns enterprises relying on Adobe for document management, creative workflows, e-commerce, and content publishing.
How to stay safe
To mitigate the risk, CERT-In strongly recommends users:
• Apply the latest security patches released by Adobe.
• Monitor systems for unusual activity.
• Avoid opening untrusted files or clicking suspicious links.
• Ensure antivirus and endpoint protection solutions are active and updated.
• Use application allowlisting to limit the execution of unapproved software.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
