Another zero day has been discovered in an Adobe product.
Security Firm Uncovers Another Adobe Zero-Day : Read more
Security Firm Uncovers Another Adobe Zero-Day : Read more
I get the investigating the report part, but assessing the risk? So if they don't deem the risk high enough, or the group large enough, they'll just leave the exploit there? The report is either true or false. If true, it means your software is flawed AND your customers are vulnerable. I could understand if the software were end of life, but for a piece of software that is perpetually updated anyways, why wouldn't you just fix it. Perhaps I'm missing something.Adobe also reports that it is currently investigating this report and assessing the risk to its customers.