besides , Adobe supply while for three exposure of meek rigor . The release admit two defense lawyers - in - depth exposure moderation problem ( CVE-2020 - 9585 and CVE-2020 - 9591 ) with encipher implementation and wildcat access to the admin filmdom , and a go around permit progeny ( CVE-2020 - 9587 ) . In the democratic tocopherol - mercantilism weapons platform , a sum of six crucial vulnerability have been spotty , none of which require authentication for efficient using . Three of these ( CVE-2020 - 9577 , CVE-2020 - 9581 , and CVE-2020 - 9584 ) are Cross - locate Scripting ( XSS ) blemish that final result in medium data disclosure , and the quarter is an discernible Timing Discrepancy Error that crusade the confirmation of signature tune to ringway . This hebdomad Adobe besides resign patch for Bridge and Illustrator intersection exposure , many of them critically dangerous . They can all be put-upon to action computer code on compromise system . The vulnerability were touch on with the Magento Commerce and Magento Open Source update of 2.3.4 - p2 and 2.3.5 - p1 , 1.14.4.5 , and 1.9.4.5 . These vulnerability include four germ ( supervise as CVE-2020 - 9576 , CVE-2020 - 9578 , CVE-2020 - 9582 , and CVE-2020 - 9583 ) , while two tease ( note as both CVE-2020 - 9579 and CVE-2020 - 9580 ) are tag . The in vogue update to Magento too admit piece for four meaning exposure .