CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/06/09 5:49 p.m.•6 views

CVE-2026-34706 InCopy | Out-of-bounds Write (CWE-787)

7.8CVSS6.1AI score0.00139EPSS

EUVD•added 2026/06/09 5:49 p.m.•6 views

EUVD-2026-35786

7.8CVSS6.2AI score0.00139EPSS

Vulnrichment•added 2026/06/09 5:49 p.m.•5 views

CVE-2026-34708 InCopy | Stack-based Buffer Overflow (CWE-121)

InCopy versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE•added 2026/06/09 5:49 p.m.•11 views

CVE-2026-34708

InCopy (Adobe) versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability (CWE-121) that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. The issue is reporte...

EUVD•added 2026/06/09 5:43 p.m.•6 views

EUVD-2026-35784

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Vulnrichment•added 2026/06/09 5:43 p.m.•4 views

CVE-2026-34701 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

CVE•added 2026/06/09 5:43 p.m.•19 views

CVE-2026-34701

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a heap-based buffer overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. The CVSSv3.1 base score is 7.8 ( HIGH ) with...

EUVD•added 2026/06/09 5:43 p.m.•7 views

EUVD-2026-35783

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE•added 2026/06/09 5:43 p.m.•18 views

CVE-2026-34695

Summary: InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a stack-based buffer overflow that could allow arbitrary code execution in the context of the current user . Exploitation requires the user to open a malicious file , i.e., a user interaction prerequisite. The available s...

CVE•added 2026/06/09 5:43 p.m.•11 views

CVE-2026-34700

CVE-2026-34700 affects Adobe InDesign Desktop (versions 21.3, 20.5.3 and earlier). The issue is an out-of-bounds write in the application, which could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file...

7.8CVSS6.2AI score0.00139EPSS

EUVD•added 2026/06/09 5:43 p.m.•7 views

EUVD-2026-35781

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00139EPSS

Vulnrichment•added 2026/06/09 5:43 p.m.•4 views

CVE-2026-34696 InDesign Desktop | Use After Free (CWE-416)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00166EPSS

EUVD•added 2026/06/09 5:43 p.m.•7 views

EUVD-2026-35780

7.8CVSS6.2AI score0.00166EPSS

Cvelist•added 2026/06/09 5:43 p.m.•33 views

CVE-2026-34698 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

7.8CVSS0.00175EPSS

EUVD•added 2026/06/09 5:43 p.m.•6 views

EUVD-2026-35777

OSV•added 2026/06/09 5:28 p.m.•4 views

USN-8415-1 vim vulnerabilities

It was discovered that Vim incorrectly handled marked filenames in the netrw plugin. An attacker could possibly use this issue to execute arbitrary code. CVE-2026-43961 It was discovered that Vim incorrectly handled filenames when decompressing certain archives. An attacker could possibly use thi...

7CVSS5.8AI score0.00573EPSS

Exploits0References3

Ubuntu•added 2026/06/09 5:28 p.m.•7 views

USN-8415-1: Vim vulnerabilities

7CVSS5.8AI score0.00573EPSS

Exploits0

OSSF Malicious Packages•added 2026/06/09 5:25 p.m.•9 views

Malicious code in @webda-infra/search (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d3966598d25bae6a0824df09461ccbea8ad8ff22be2b3b93eab681cc733ff73 @webda-infra/[email protected] is a near-empty placeholder index.js is empty, module.exports = whose package.json declares a single dependency, ltidisafe...

6AI score