The latest version of Adobe’s Creative Cloud software, which is built into the operating system, can be hacked.
Adobe says the security flaw is caused by a critical vulnerability in Adobe Flash Player.
Adobe said the flaw could be exploited to steal private data from Adobe Cloud users.
The flaw has been patched in the latest version, Creative Cloud 10.4.1.
But the vulnerability, which has been in use since the fall of 2010, is still exploited in a limited way, and it may still be exploited in the future, Adobe said in a blog post.
Adobe’s advisory says the flaw is “extremely difficult to exploit,” and that the vulnerability can be used to gain unauthorized access to a user’s device or install malicious software on a user device.
The security flaw could allow attackers to read encrypted data, install adware, and inject malicious code.
Adobe Cloud X is an online tool for installing and managing Adobe Creative Tools, Adobe Flash, Photoshop, Illustrator, and Premiere software.
Adobe also makes the Adobe Photoshop Elements software, Adobe Creative Suite, Adobe Premiere Pro, Adobe Elements, and Adobe Illustrator products.
The software has been downloaded more than 1.2 billion times, and users use it to create professional work.
Adobe has a history of security issues.
Adobe Flash vulnerabilities are the result of a bug in Adobe’s Flash Player, which can be exploited by attackers to download and execute code, steal private information, and install ad-supported software.
The vulnerabilities were patched in February, but the vulnerability is still present in some versions of Adobe Flash.
Adobe told HackRead that Adobe Cloud and Creative Cloud users need to install the Adobe Flash plugin, which will be updated automatically to prevent the exploit from happening again.
The latest Adobe Flash version for Mac OS X, Windows, and Linux is 9.0.836.