EUVD-2026-22651

InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

EUVD-2025-17699

Malicious code in bioql PyPI...

EUVD-2025-2228

Malicious code in bioql PyPI...

EUVD-2025-17703

Malicious code in bioql PyPI...

CVE-2025-47134 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-47136 InDesign Desktop | Integer Underflow (Wrap or Wraparound) (CWE-191)

InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

PT-2025-28761 · Adobe · Indesign Desktop

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions 19.5.3 and earlier Description: InDesign Desktop versions 19.5.3 and earlier are susceptible to an out-of-bounds write issue. Successful exploitation of this issue could lead to arbitrary code execution with the...

PT-2025-28760 · Adobe · Indesign Desktop

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions 19.5.3 and earlier Description: InDesign Desktop versions 19.5.3 and earlier are susceptible to an Access of Uninitialized Pointer issue, potentially leading to arbitrary code execution with current user privileges...

CVE-2025-47104

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-30321 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30321 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30321

CVE-2025-30321 refers to a NULL Pointer Dereference in Adobe InDesign Desktop (ID20.2, ID19.5.3 and earlier) that can lead to application denial-of-service. The issue requires user interaction: a victim must open a malicious file. Connected advisories confirm multiple in-effect vulnerabilities an...

CVE-2025-43589

Summary: CVE-2025-43589 affects Adobe InDesign Desktop, specifically versions ID20.2, ID19.5.3 and earlier. The issue is a Use-After-Free vulnerability that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a mali...

CVE-2025-30317 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30317

InDesign Desktop (ID20.2, ID19.5.3 and earlier) is affected by a Heap-based Buffer Overflow vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Several connected sources corroborate...

CVE-2025-43558 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43558 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-47104 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-47104

InDesign Desktop, affected versions ID20.2, ID19.5.3 and earlier, suffer an out-of-bounds read that can disclose memory and bypass mitigations like ASLR. Exploitation requires user interaction (victim opens a malicious file). Adobe has issued a security update (APSB25-53) addressing these vulnera...

CVE-2025-47104 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...