262 matches found
CVE-2025-43591
InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-47103
InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43591
Summary. InDesign Desktop 19.5.3 and earlier are affected by a heap-based buffer overflow in the way files are processed, potentially allowing arbitrary code execution in the user’s context. Affected entries across sources consistently note exploitation requires the user to open a malicious file ...
CVE-2025-43592
Adobe InDesign Desktop is affected by an Access of Uninitialized Pointer vulnerability in versions 19.5.3 and earlier, enabling arbitrary code execution in the user context when a malicious file is opened. Exploitation requires user interaction. The available connected sources indicate the affect...
CVE-2025-43594
CVE-2025-43594 affects Adobe InDesign Desktop up to version 19.5.3 (and earlier). The vulnerability is an out-of-bounds write that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. The CVSSv3.1 bas...
CVE-2025-43594 InDesign Desktop | Out-of-bounds Write (CWE-787)
InDesign Desktop versions 19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43594 InDesign Desktop | Out-of-bounds Write (CWE-787)
InDesign Desktop versions 19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-47136
CVE-2025-47136 affects Adobe InDesign Desktop (versions 19.5.3 and earlier). The issue is an Integer Underflow (Wrap or Wraparound) in InDesign Desktop, enabling arbitrary code execution in the context of the current user when a user opens a malicious file. CVSSv3.1 metrics from the entry imply l...
CVE-2025-47103
Summary: CVE-2025-47103 is a heap-based buffer overflow in Adobe InDesign Desktop versions 19.5.3 and earlier, allowing arbitrary code execution in the context of the current user when a user opens a malicious file. Impact details: requires user interaction; vulnerable component is InDesign Deskt...
Adobe InDesign Heap Buffer Overflow Vulnerability (CNVD-2025-13327)
Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...
Adobe InDesign Memory Misreference Vulnerability
Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe InDesign, which can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...
Adobe InDesign Desktop Buffer Overflow Vulnerability (CNVD-2025-14824)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a buffer overflow vulnerability that stems from an out-of-bounds write problem that can be exploited by an attacker to cause arbitrary code execution...
Adobe InDesign Desktop Buffer Overflow Vulnerability (CNVD-2025-14823)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a buffer overflow vulnerability that stems from an out-of-bounds write problem that can be exploited by an attacker to cause arbitrary code execution...
CVE-2025-47105
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2025-47104
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2025-43558
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43589
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43590
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43593
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-43593
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...