Adobe Security Bulletin

Security updates available for Adobe Campaign Classic | APSB21-04

Bulletin ID	Date Published	Priority
APSB21-04	January 12, 2021	2

Adobe has released security updates for Adobe Campaign Classic. These updates address a critical server-side request forgery (SSRF) vulnerability that could result in sensitive information disclosure.

Product	Affected version	Platform
Adobe Campaign Classic	Gold Standard 10 (and earlier versions)	Windows, Linux
	20.3.1 (and earlier versions)	Windows, Linux
	20.2.3 (and earlier versions)	Windows, Linux
	20.1.3 (and earlier versions)	Windows, Linux
	19.2.3 (and earlier versions)	Windows, Linux
	19.1.7 (and earlier versions)	Windows, Linux

Adobe categorizes these updates with the following priority rating and recommends users update their installation to the newest version:

Product	Updated version	Platform	Priority rating	Availability
Adobe Campaign Classic	Gold Standard 11	Windows and Linux	2	Release Notes
	20.3.3 - Build 9234	Windows and Linux	2
	20.2.4 - Build 9187	Windows and Linux	2
	20.1.4 - Build 9126	Windows and Linux	2
	19.2.4 - Build 9082	Windows and Linux	2
	19.1.8 - Build 9039	Windows and Linux	2

Vulnerability Category	Vulnerability Impact	Severity	CVE Number
Server-side request forgery (SSRF)	Sensitive information disclosure	Critical	CVE-2021-21009

Adobe would like to thank Jamie Parfet for reporting this issue and for working with Adobe to help protect our customers.

Adobe Security Bulletin

Summary

Affected versions

Solution

Vulnerability Details

Acknowledgments

Ask the Community

Contact Us