Report Incident
× Home Cybertech Africa 2023 2 DPO Rw-CSIRT Website About Rw-CSIRT Alerts Advisories About NCSA Documentation News & Events Topics Contact us Opportunities Privacy Policy

Alert: Adobe Security Updates – January 2026

Adobe has released security updates to address multiple vulnerabilities in its software, including Dreamweaver, InDesign, Illustrator, InCopy, Bridge, Substance 3D, and ColdFusion for Windows and macOS.
 
Affected Systems
 
The following system versions are known to be affected but not limited to:
  • InDesign: ID21.0 and earlier; ID19.5.5 and earlier
  • Illustrator: 2025 (29.8.3 and earlier); 2026 (30.0 and earlier)
  • InCopy: 21.0 and earlier; 19.5.5 and earlier
  • Bridge: 15.1.2 (LTS) and earlier; 16.0 and earlier
  • Substance 3D (Modeler, Stager, Painter, Sampler): affected versions up to listed releases
  • ColdFusion: 2025 Update 5 and earlier; 2023 Update 17 and earlier
 
Security Risks
 
The identified vulnerabilities in Adobe software, if successfully exploited, could grant an attacker control over affected systems, enabling them to execute malicious activities.  
 
Recommended Actions
 
The National Cyber Security Authority (NCSA) recommends users and system administrators to:
 
1. Upgrade to the latest supported version of the installed software as soon as possible to ensure continued access to technical support and security patches. The recommended software versions to upgrade to are as follows, but not limited to:
2. Before performing any update tasks, ensure that you have a backup of your data.
 
3. Ensure that all employees in their organization understand the significance of installing security updates and keeping their software up to date.
 
For further information and support, please contact the National Cyber Security Authority (NCSA) by emailto rwcsirt@ncsa.gov.rw or call us on 9009
 
References

19 January 2026

© 2026 National Cyber Security Authority