Adobe issues out-of-band patch to fix remote code execution flaw in animation software


Adobe has released an out-of-band patch to tackle a remote code execution (RCE) flaw in Adobe Character Animator.

On Tuesday, the company released a security advisory warning customers of CVE-2020-9586, a stack-based buffer overflow vulnerability that could lead to RCE attacks.

Adobe Character Animator on Windows and macOS machines, versions 3.2 and earlier, are vulnerable to the critical bug which has been issued a CVSS severity score of 7.8.

Read more…