CVE-2023-44345

CVE-2023-44345 affects Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier. The issue is improper input validation causing application denial-of-service under the current user, with exploitation requiring user interaction (victim opens a malicious file). Connected documents corrob...

CVE-2023-44344 Adobe InDesign CC 2023 Memory Corruption Vulnerability V.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44344 Adobe InDesign CC 2023 Memory Corruption Vulnerability V.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44344

CVE-2023-44344 affects Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier. It is an out-of-bounds read vulnerability that could disclose memory and potentially bypass mitigations such as ASLR. Exploitation requires user interaction (victim must open a malicious file). The CVSSv3....

CVE-2023-44341 Adobe InDesign CC 2023 Memory Corruption Vulnerability I

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue...

CVE-2023-44341 Adobe InDesign CC 2023 Memory Corruption Vulnerability I

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue...

CVE-2023-44341

Adobe InDesign CVE-2023-44341 is a NULL pointer dereference affecting InDesign Desktop: versions ID18.5 and earlier and ID17.4.2 and earlier, enabling an unauthenticated attacker to trigger denial-of-service in the context of the current user when a victim opens a malicious file. The issue requir...

CVE-2023-44346 Adobe InDesign CC 2023 Memory Corruption Vulnerability VIII.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44346

CVE-2023-44346 concerns Adobe InDesign. Affected: InDesign versions ID18.5 and earlier and ID17.4.2 and earlier. Vulnerability: out-of-bounds read that could disclose memory and bypass mitigations such as ASLR; exploitation requires user to open a malicious file. Connected advisories (APSB23-55) ...

CVE-2023-44346 Adobe InDesign CC 2023 Memory Corruption Vulnerability VIII.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44347 Adobe InDesign CC 2023 Memory Corruption Vulnerability IX.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue...

CVE-2023-44347

Summary : CVE-2023-44347 affects Adobe InDesign versions ID18.5 and earlier, and ID17.4.2 and earlier, due to a NULL Pointer Dereference. This causes an application denial-of-service in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). The is...

CVE-2023-44347 Adobe InDesign CC 2023 Memory Corruption Vulnerability IX.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue...

CVE-2023-44343 Adobe InDesign CC 2023 Memory Corruption Vulnerability III.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44343 Adobe InDesign CC 2023 Memory Corruption Vulnerability III.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44343

Adobe InDesign is affected by CVE-2023-44343: an out-of-bounds read in ID18.5 and earlier and ID17.4.2 and earlier that can disclose memory and bypass ASLR. Exploitation requires user interaction (opening a malicious file). The issue is documented under APSB23-55 alongside several related CVEs (4...

CVE-2023-44342 Adobe InDesign CC 2023 Memory Corruption Vulnerability II.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44342 Adobe InDesign CC 2023 Memory Corruption Vulnerability II.

Adobe InDesign versions ID18.5 and earlier and ID17.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2023-44342

Summary (CVE-2023-44342): Adobe InDesign versions ID18.5 and earlier, and ID17.4.2 and earlier are affected by an out-of-bounds read that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Affected component is InDesign; root cause is an o...

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities affecting multiple Adobe products. A cyber threat actor could exploit some of these vulnerabilities to take control of affected system. CISA encourages users and administrators to review the following advisories and apply the necessar...