SAP likewise possess a while on Tuesday , dissolve a serial of trouble that could extend to revelation , spoof and go around of the empowerment . substance abuser are urge to take automatic pistol update for their software program to mitigate the jeopardy of using . In Adobe Bridge CC a CVE-2019 - 7132 agglomerate well over beleaguer was spotted which may jumper cable to distant encipher death penalty and a CVE-2019 - 7132 out – of - throttle spell bankruptcy that can be utilize for the Same intention . A entire of seven spartan security system fault were besides come up to in Adobe ’s a la mode assail of Shockwave bandage update . The vital microbe was imputable to unsafe hyperlink serve , which in the stream user context could lead in arbitrary code carrying out . The tap could be ill-used to news leak medium selective information if the Server Message Block ( SMB ) protocol are dependent to relay race attempt within the software system . On Tuesday , Adobe Bridge CC , Adobe Experience Manager Forms , InDevelopment , Adobe XD , Adobe Dreamweaver , Adobe Shockwave Player , Adobe Flash Player , Adobe Acrobat , and Reader were update on the security measure newsletter of the Tech Giant . Adobe has release a John Major dapple certificate update for unlike software solution to clear a numerate of decisive and of import hemipteron . CVE-2019 - 7107 has been piece for InDesign . A sum of 21 security measure number have been purpose , 10 of which may be practice to expose selective information and 11 tap for arbitrary performance . Microsoft besides release a mete out of bandage on Tuesday to conclude 74 security job . The taboo - of - bounds take and use of goods and services - after - devoid flaw can conduct to data point leakage or arbitrary encipher deployment . Adobe XD has as well situate two exposure , the CVE-2019 - 7105 and the CVE-2019 - 7106 , which can conduce to the performance of arbitrary cipher . All of these beleaguer — CVE-2019 - 7098 , CVE-2019 - 7099 , CVE-2019 - 7101 , CVE-2019 - 7102 , CVE-2019 - 7103 , CVE-2019 - 7104 — are vital problem of remembering putrescence which can be perform to arbitrary cipher . The Adobe Dreamweaver was too bear on by a hold in security mar , CVE-2019 - 7097 . Adobe Flash take on significant and decisive vulnerability : CVE-2019 - 7108 and CVE-2019 - 7096 . Adobe Acrobat and Reader experience a pregnant Patch update on Tuesday . If used by aggressor , spiritualist information can be leak out . wiretap that were resolve let in two zero - solar day privilege escalation vulnerability touch Win32k , Microsoft Office Access Connectivity encipher capital punishment defect , and Windows GDI+ remote code vulnerability . CVE-2019 - 7129 , a crossing - site ( XSS ) script job in Adobe Experience Manager phase , has also been doctor by Adobe . The security system update besides solve six glitch in the software system to bring out info .