Adobe

Adobe has released a high-severity vulnerability (CVSS 7.8) affecting one of their products that requires local access and user interaction to exploit, but delivers significant impact across confidentiality, integrity, and availability. The flaw does not require authentication or network access, making it exploitable by any local user who can trick a target into opening a malicious file or performing a specific action. Security teams should monitor for patches from Adobe's June 2026 deadline and watch for exploitation attempts targeting local privilege escalation or data theft scenarios involving social engineering.