Affected Systems

The following system versions are known to be affected but not limited to:

• Adobe InDesign: Version 20.4 and earlier & Adobe InDesign: Version 19.5.4 and earlier for Windows and macOS.

• Adobe Animate 2023: Version 23.0.12 and earlier & Adobe Animate 2024:: Version 24.0.9 and earlier for Windows and macOS.

• Adobe Photoshop 2024: Version 25.12.3 and earlier & Adobe Photoshop 2025: Version 26.8 and earlier for Windows and macOS.

• Adobe Illustrator 2024: Version 28.7.8 and earlier & Adobe Illustrator 2025: Version 29.6.1 and earlier for Windows and macOS.

Security Risks

The identified vulnerabilities in Adobe software, if successfully exploited, could grant an attacker control over affected systems, enabling them to execute malicious activities.  

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

1. Upgrade to the latest supported version of the installed software as soon as possible to ensure continued access to technical support and security patches.

The recommended software versions to upgrade to are as follows, but not limited to:

• Adobe InDesign: Version 20.5 & Adobe InDesign: Version 19.5.5 for Windows and macOS.

• Adobe Animate 2023: Version 23.0.13 & Adobe Animate 2024: Version 24.0.10 for Windows and macOS.

• Adobe Photoshop 2024: Version 25.12.4 and above & Adobe Photoshop 2025: Version 26.9 and above for Windows and macOS.

• Adobe Illustrator 2024: Version 28.7.9 & Adobe Illustrator 2025: Version 29.7 for Windows and macOS.

2. Before performing any update tasks, ensure that you have a backup of your data.

3. Ensure that all employees in their organization understand the significance of installing security updates and keeping their software up to date.

For further information and support, please contact the National Cyber Security Authority (NCSA) by emailto rwcsirt@ncsa.gov.rw or call us on 9009

References

Adobe Security Bulletins and Advisories.