CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2024/08/14 3:5 p.m.•25 views

CVE-2024-41850 Adobe Indesign 2024 TIF File Parsing Heap Memory Corruption

7.8CVSS0.00322EPSS

CVE•added 2024/08/14 3:5 p.m.•62 views

CVE-2024-41850

CVE-2024-41850 is a vulnerability in Adobe InDesign Desktop, affecting versions ID19.4, ID18.5.2 and earlier. The issue is described as a heap-based buffer overflow that could allow arbitrary code execution in the context of the current user, with exploitation requiring user interaction (the vict...

7.8CVSS7.8AI score0.00322EPSS

Vulnrichment•added 2024/08/14 3:5 p.m.•19 views

CVE-2024-41854 Adobe Indesign 2024 PDF File parsing memory corruption

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS6.1AI score0.00039EPSS

5.5CVSS5.1AI score0.00039EPSS

CVE-2024-41854

Adobe InDesign CVE-2024-41854 describes an out-of-bounds read vulnerability in InDesign Desktop (IDs 19.4, 18.5.2 and earlier) that could disclose memory and bypass ASLR. Exploitation requires a user to open a malicious file. The issue is cited in multiple sources (APSB24-56 advisory; Nessus desc...

Cvelist•added 2024/08/14 3:5 p.m.•19 views

CVE-2024-41854 Adobe Indesign 2024 PDF File parsing memory corruption

5.5CVSS0.00039EPSS

CVE•added 2024/08/14 3:5 p.m.•60 views

CVE-2024-39390

Adobe InDesign Desktop prior to 18.5.3 and 19.0+ (ID19.4, ID18.5.2 and earlier) is affected by an out-of-bounds write that could allow arbitrary code execution with the user’s context after opening a malicious file. The advisory APSB24-56 and related advisories indicate updates are available to f...

7.8CVSS7.9AI score0.0014EPSS

Cvelist•added 2024/08/14 3:5 p.m.•24 views

CVE-2024-39391 Adobe Indesign XLS File Parsing Out Of Bound Write Remote Code execution vulnerability

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.0014EPSS

Vulnrichment•added 2024/08/14 3:5 p.m.•16 views

CVE-2024-39390 Adobe Indesign 2024 DOC File Parsing Memory Corruption

7.8CVSS7.3AI score0.0014EPSS

7.8CVSS7.9AI score0.0014EPSS

CVE-2024-39391

CVE-2024-39391 affects Adobe InDesign Desktop versions ID19.4, ID18.5.2 and earlier. The issue is an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Multiple connected so...

Cvelist•added 2024/08/14 3:5 p.m.•19 views

CVE-2024-39390 Adobe Indesign 2024 DOC File Parsing Memory Corruption

7.8CVSS0.0014EPSS

Vulnrichment•added 2024/08/14 3:5 p.m.•14 views

CVE-2024-39391 Adobe Indesign XLS File Parsing Out Of Bound Write Remote Code execution vulnerability

7.8CVSS7.3AI score0.0014EPSS

Cvelist•added 2024/08/14 3:5 p.m.•20 views

CVE-2024-41866 Adobe Indesign 2024 DOC File Parsing Null Pointer Dereference

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service DoS. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation ...

5.5CVSS0.00153EPSS

Vulnrichment•added 2024/08/14 3:5 p.m.•17 views

CVE-2024-41866 Adobe Indesign 2024 DOC File Parsing Null Pointer Dereference

5.5CVSS6.4AI score0.00153EPSS

5.5CVSS5.3AI score0.00153EPSS

CVE-2024-41866

Adobe InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could crash the application and cause a denial-of-service. Exploitation requires user interaction (victim opens a malicious file). The issue is listed among APSB24-56 and ass...

Cvelist•added 2024/08/14 3:5 p.m.•26 views

CVE-2024-41852 Adobe Indesign 2024 AVI File Parsing Stack Based Buffer Overflow

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00322EPSS

Vulnrichment•added 2024/08/14 3:5 p.m.•10 views

CVE-2024-41852 Adobe Indesign 2024 AVI File Parsing Stack Based Buffer Overflow

7.8CVSS7.3AI score0.00322EPSS

CVE•added 2024/08/14 3:5 p.m.•63 views

CVE-2024-41852

CVE-2024-41852 affects Adobe InDesign Desktop for Windows, specifically ID19.4, ID18.5.2 and earlier. It is a stack-based buffer overflow that can enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). The CV...

7.8CVSS7.8AI score0.00322EPSS

Cvelist•added 2024/08/14 3:5 p.m.•23 views

CVE-2024-41851 Adobe InDesign (Beta) has an integer overflow vulnerability when parsing SVG file

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00262EPSS

7.8CVSS7.8AI score0.00322EPSS

CVE-2024-41853

CVE-2024-41853 – Adobe InDesign Desktop : A heap-based buffer overflow in InDesign Desktop (IDs ID19.4, ID18.5.2 and earlier) could allow arbitrary code execution in the user’s context. Exploitation requires user interaction—opening a malicious file. The CVSSv3.1 base score is 7.8 (High) with loc...