Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution

Multiple security vulnerabilities have been disclosed across numerous Adobe products (including Acrobat Reader, Adobe Commerce, Experience Manager, Illustrator, Premiere Pro, Substance 3D components, and others). The issues include use-after-free, buffer overflows, out-of-bounds reads/writes, improper signature verification, XSS, SSRF, path traversal and related flaws; the most severe could permit arbitrary code execution in the context of the logged-on user, potentially allowing installation of programs, data access/modification, or account creation. The report lists many CVE identifiers per product but does not indicate active exploitation.