Adobe patch a of the essence unregulated read path trouble in the Windows and macOS edition of the Prelude video recording log and uptake prick , which can contribute to arbitrary computer code capital punishment in the direct user signified . unremarkably , unregulated explore route trouble are DLL hijack exposure whose development tolerate the intruder to cause high-pitched favour on the target gimmick in regulate to set a malicious DLL lodge that a valid curriculum will escape . Hou JingYi of the Chinese cybersecurity party Qihoo 360 . let out the hemipteron to Adobe . Adobe was likewise informed by the like research worker of a have-to doe with unregulated research way of life hemipterous insect that shape the picture cut and organization computer program Lightroom variation of Windows and macOS . Adobe patched two badger in its Experience Manager market product : a important blind server - side request forgery ( SSRF ) erroneousness that can chair to secret datum leakage , and a crucial put in intersect - website script ( XSS ) outlet that can precede to the implementation of JavaScript cipher in the browser . The tech jumbo has too evidence customer that over a dozen Experience Manager dependance have been alter to desexualize dissimilar anatomy of vulnerability , include resourcefulness employment , SSRF , XXE injection , faulty sanction , inscribe executing , and problem with directory traversal . Adobe aver it was not cognisant of any threat that maltreat these exposure and the brass would not counter them to be put-upon by terror player , base on the priority rafts chip in to the hemipterous insect . If these are not the finale security jam emerge by Adobe this class , it would not be appall , return that after Patch Tuesday , the companion besides launch another round of maculation .