Why Adobe, JetBrains, and Google Are Racing to Patch Critical Vulnerabilities in 2022

Adobe Issues Emergency Patch for Critical Magento Zero‑Day

Adobe announced an urgent security update for a zero‑day vulnerability affecting Adobe Commerce and Magento open‑source stores (CVE‑2022‑24086) with a CVSS score of 9.8. The flaw is an input‑validation issue that can be exploited without administrative privileges, allowing attackers to execute arbitrary code. Affected versions include Adobe Commerce 2.3.3‑p1 to 2.3.7‑p2 and Magento 2.4.0‑2.4.3‑p1 and earlier. Users are urged to apply the patch immediately via the official support link.

JetBrains Removes Log4j from IntelliJ Platform

JetBrains announced that the IntelliJ platform will no longer include the Log4j library, citing recent high‑profile Log4j vulnerabilities. The platform already uses a patched Log4j 1.2 version and has stripped network‑related code, but security tools still flag it. Moving forward, IntelliJ will rely on the standard java.util.logging API, and a stub implementation of the Log4j API will redirect calls to java.util.logging. This change ships with version 2022.1, and developers may need to adjust plugin code to accommodate the stub.

Google Launches Android 13 "Tiramisu"

Google released the first developer preview of Android 13, codenamed "Tiramisu". The update refines Android 12 with a focus on user experience, introducing Material You styling for permission dialogs, expanded theming options, and support for themed app icons. New privacy features include a photo picker that limits app access to selected images. Android 13 also improves tablet and foldable experiences and enhances connectivity with IoT devices and Windows PCs.