August 13, 2025 – Adobe has released its August Patch Tuesday security updates, resolving more than 60 vulnerabilities affecting a range of products used in 3D design, digital content creation, and publishing.

The company issued 13 separate security advisories, five of which focus on flaws in its Substance 3D suite — including Viewer, Modeler, Painter, Sampler, and Stager. These patches address multiple critical remote code execution vulnerabilities, alongside several important memory leak issues.

Critical Fixes Across Popular Adobe Products

• Commerce and Magento Open Source: Four critical vulnerabilities were resolved, which could lead to privilege escalation, denial of service (DoS), or arbitrary file system access. Two additional flaws allowed bypassing certain security features.
• Animate: One critical arbitrary code execution vulnerability and a memory leak were patched.
• Illustrator: Three code execution flaws and one DoS vulnerability were addressed.
• Photoshop: A critical code execution bug was fixed.
• Dimension: One memory leak vulnerability was resolved.
• FrameMaker: Several critical code execution flaws were patched.
• InCopy & InDesign: Nearly 20 critical vulnerabilities were eliminated, all of which could be exploited for arbitrary code execution.

No Active Exploits Reported

Adobe has confirmed that it has no evidence of any of these vulnerabilities being exploited in active attacks. While some of the flaws carry a critical severity rating, all have been assigned a priority level of 2 or 3, meaning that exploitation in the wild is considered unlikely.

Security Implications

This large-scale update underscores the importance of timely patch management in protecting against potential exploitation. Organizations using Adobe products — especially in creative, publishing, and e-commerce workflows — are advised to apply these updates promptly to mitigate the risk of compromise.

Source: https://www.securityweek.com/adobe-patches-over-60-vulnerabilities-across-13-products