Adobe has released security updates to address multiple vulnerabilities in its software, including Adobe InDesign, Adobe Substance 3D Stager, Illustrator, and others for Windows and macOS.

Affected Systems

The following system versions are known to be affected but not limited to:

• Adobe InDesign: Version ID20.0 and earlier versions and ID19.5.1 and earlier versions (Windows and macOS).

• Adobe Substance 3D Stager: 3.1.0 and earlier versions (Windows and macOS)

• Adobe Substance 3D Designer: 14.0.2 and earlier versions (all platforms)

• Adobe InCopy: 20.0 and earlier versions and 19.5.1 and earlier versions (Windows and macOS).

• Adobe Illustrator 2024: Version 28.7.3 and earlier & Adobe Illustrator 2025: Version 29.1 and earlier for Windows and macOS.

Security Risks

The identified vulnerabilities in Adobe software, if successfully exploited, could grant an attacker control over affected systems, enabling them to execute malicious activities.  

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

1. Upgrade to the latest supported version of the installed software as soon as possible to ensure continued access to technical support and security patches.

The recommended software versions to upgrade to are as follows, but not limited to:

• Adobe InDesign: Versions ID20.1 and and ID19.5.2 (Windows and macOS).

• Adobe Substance 3D Stager: Version 3.1.1 (Windows and macOS)

• Adobe Substance 3D Designer: Version 14.1 (all platforms)

• Adobe InCopy: Versions 20.1 and 19.5.2 (Windows and macOS).

• Adobe Illustrator 2024: Version 28.7.4 and above & Adobe Illustrator 2025: Version 29.2.1 and above for Windows and macOS.

2. Before performing any update tasks, ensure that you have a backup of your data.

For further information and support, please contact the National Cyber Security Authority (NCSA) by emailto rwcsirt@ncsa.gov.rw or call us on 9009

References

Adobe Security Bulletins and Advisories.