Lucene search
K

4291 matches found

nvd
nvd
added 2026/06/09 6:17 p.m.13 views

CVE-2026-48293

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00139EPSS
Exploits0References1
nvd
nvd
added 2026/06/09 6:16 p.m.12 views

CVE-2026-34696

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00166EPSS
Exploits0References1
nvd
nvd
added 2026/06/09 6:16 p.m.12 views

CVE-2026-34697

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00175EPSS
Exploits0References1
euvd
euvd
added 2026/06/09 5:49 p.m.12 views

EUVD-2026-35786

InCopy versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00139EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/09 5:49 p.m.10 views

CVE-2026-34706 InCopy | Out-of-bounds Write (CWE-787)

InCopy versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00139EPSS
Exploits0References1
cve
cve
added 2026/06/09 5:43 p.m.34 views

CVE-2026-34701

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a heap-based buffer overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. The CVSSv3.1 base score is 7.8 ( HIGH ) with...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1Affected Software1
euvd
euvd
added 2026/06/09 5:43 p.m.11 views

EUVD-2026-35782

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this...

5.5CVSS5.5AI score0.0013EPSS
Exploits0References1
cve
cve
added 2026/06/09 5:43 p.m.30 views

CVE-2026-34695

Summary: InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a stack-based buffer overflow that could allow arbitrary code execution in the context of the current user . Exploitation requires the user to open a malicious file , i.e., a user interaction prerequisite. The available s...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/06/09 5:43 p.m.38 views

CVE-2026-34696 InDesign Desktop | Use After Free (CWE-416)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00166EPSS
Exploits0References1
cve
cve
added 2026/06/09 5:43 p.m.22 views

CVE-2026-34696

The vulnerability CVE-2026-34696 affects Adobe InDesign Desktop, including version 21.3 and 20.5.3 and earlier. The issue is a Use After Free weakness in the product’s handling of certain resources, leading to arbitrary code execution in the context of the current user. Exploitation requires user...

7.8CVSS6.2AI score0.00166EPSS
Exploits0References1Affected Software1
euvd
euvd
added 2026/06/09 5:43 p.m.13 views

EUVD-2026-35780

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00166EPSS
Exploits0References1
cve
cve
added 2026/06/09 5:43 p.m.29 views

CVE-2026-34698

CVE-2026-34698 affects Adobe InDesign Desktop versions 21.3, 20.5.3 and earlier. The issue is a heap-based buffer overflow in a component used by InDesign, leading to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a maliciou...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/06/09 5:43 p.m.41 views

CVE-2026-34705 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a...

5.5CVSS0.00155EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/09 5:43 p.m.11 views

CVE-2026-34699 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1
euvd
euvd
added 2026/06/09 5:43 p.m.12 views

EUVD-2026-35775

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/09 5:43 p.m.11 views

CVE-2026-48293 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00139EPSS
Exploits0References1
cve
cve
added 2026/06/09 5:43 p.m.24 views

CVE-2026-48293

InDesign Desktop vulnerable versions are 21.3, 20.5.3 and earlier to an out-of-bounds write that can enable arbitrary code execution in the current user context. The issue requires user interaction: a victim must open a malicious file. Documented impact is high (CVE-2026-48293) with local attack ...

7.8CVSS6.2AI score0.00139EPSS
Exploits0References1Affected Software1
cve
cve
added 2026/06/09 5:43 p.m.20 views

CVE-2026-34702

CVE-2026-34702 affects Adobe InDesign Desktop versions 21.3, 20.5.3 and earlier. The issue is a stack-based buffer overflow that could allow arbitrary code execution in the context of the current user . Exploitation requires user interaction, with the attacker delivering a malicious file that the...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1Affected Software1
euvd
euvd
added 2026/06/09 5:43 p.m.12 views

EUVD-2026-35773

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00175EPSS
Exploits0References1
nvd
nvd
added 2026/06/09 5:17 p.m.11 views

CVE-2026-48266

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS0.00283EPSS
Exploits0References1
Rows per page
Query Builder