PT-2026-2772

InDesign Desktop versions 21.0, 19.5.5 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-66270

The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49...

CVE-2025-32900

In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to temporarily change the displayed information about a device, because broadcast UDP is used. This affects KDE Connect before 1.33.0 on Android, KDE Connect before 25.04 on desktop, KDE Connect before 0.5...

CVE-2025-61832

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

EUVD-2021-10956

Malware in sbrugna...

EUVD-2016-9353

Malware in sbrugna...

EUVD-2024-18468

Malicious code in bioql PyPI...

CVE-2025-54207

CVE-2025-54207 affects Adobe InDesign Desktop, specifically versions 20.4 and 19.5.4 and earlier. It describes an uninitialized pointer vulnerability that can lead to arbitrary code execution in the context of the current user, with exploitation requiring a user to open a malicious file. Connecte...

CVE-2024-49512

CVE-2024-49512 affects Adobe InDesign Desktop (ID18.5.3, ID19.5 and earlier). It is an out-of-bounds read that could disclose memory and bypass ASLR; exploitation requires a user to open a malicious file. Connected sources confirm affected versions and impact; remediation is Adobe APSB24-88 secur...

CVE-2024-45137

InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by uploading a malicious file which, when executed, could run arbitrary...

CVE-2024-45108

Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-43760

Summary of CVE-2024-43760 (Photoshop Desktop) : Adobe Photoshop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a maliciou...

CVE-2024-45109

CVE-2024-45109 affects Adobe Photoshop Desktop prior to 24.7.5/25.12 (versions 24.7.4, 25.11 and earlier). The issue is an out-of-bounds write that can lead to arbitrary code execution in the context of the current user, requiring the victim to open a malicious file (user interaction). Affected c...

CVE-2024-34117

Photoshop Desktop versions 24.7.3, 25.9.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-39390 Adobe Indesign 2024 DOC File Parsing Memory Corruption

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-39391 Adobe Indesign XLS File Parsing Out Of Bound Write Remote Code execution vulnerability

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-41866 Adobe Indesign 2024 DOC File Parsing Null Pointer Dereference

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service DoS. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation ...

CVE-2024-39394

Adobe InDesign Desktop (Windows/macOS) versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability (CVE-2024-39394) that could enable arbitrary code execution in the current user context. Exploitation requires the user to open a malicious file. A security update is ...

CVE-2024-39394 Adobe Indesign 2024 PDF File Parsing Out Of Bound Write Remote Code Execution Vulnerability

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-39394 Adobe Indesign 2024 PDF File Parsing Out Of Bound Write Remote Code Execution Vulnerability

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...