CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Adobe InDesign Memory Corruption Vulnerability (CNVD-2020-52162)

Adobe InDesign is a desktop publishing DTP application from Adobe that is primarily used for typesetting and editing a variety of printed materials. A memory corruption vulnerability exists in Adobe InDesign 15.1.1 and earlier versions. An attacker can exploit the vulnerability to execute arbitra...

Adobe InDesign Memory Corruption Vulnerability (CNVD-2020-52163)

Adobe InDesign Memory Corruption Vulnerability (CNVD-2020-52164)

Adobe InDesign Memory Corruption Vulnerability (CNVD-2020-52161)

7.8CVSS7.5AI score0.02263EPSS

Adobe InDesign Memory Corruption Vulnerability (CNVD-2020-52160)

CISA•added 2020/09/08 12:0 a.m.•10 views

Adobe Releases Security Updates

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the following...

7AI score

Exploits0References3

Adobe•added 2020/09/08 12:0 a.m.•38 views

APSB20-52 Security updates available for InDesign

Adobe has released a security update for Adobe InDesign. This update addresses multiple critical vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user...

8.3AI score

Exploits0Affected Software1

BDU FSTEC•added 2020/07/07 12:0 a.m.•1 views

The vulnerability of Adobe InDesign’s computer design automation tool lies in its lack of proper input data validation, allowing attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

10CVSS0.06387EPSS

Exploits0References3Affected Software1

Check Point Advisories•added 2019/11/25 12:0 a.m.•5 views

Adobe InDesign Remote Code Execution (CVE-2019-7107)

A remote code execution vulnerability exists in Adobe InDesign. The vulnerability is due to insufficient validation of hyperlinks in InDesign documents. Successful exploitation could result in arbitrary code execution under the security context of the application...

10CVSS3.5AI score0.06387EPSS

Exploits0

Kitploit•added 2019/10/20 12:0 p.m.•131 views

FOCA - Tool To Find Metadata And Hidden Information In The Documents

FOCA Fingerprinting Organizations with Collected Archives FOCA is a tool used mainly to findmetadata and hidden information in the documents it scans. These documents may be on web pages, and can be downloaded and analysed with FOCA. It is capable of analysing a wide variety of documents, with th...

6.8AI score

NVD•added 2019/05/23 4:29 p.m.•13 views

CVE-2019-7107

Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2...

10CVSS9.6AI score0.06387EPSS

OSV•added 2019/05/23 4:29 p.m.•2 views

CVE-2019-7107

Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2...

9.8CVSS7.5AI score0.06387EPSS

Prion•added 2019/05/23 4:29 p.m.•17 views

Code injection

Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2...

10CVSS9.5AI score0.06387EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/05/23 3:40 p.m.•21 views

CVE-2019-7107

Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2...

9.7AI score0.06387EPSS

CVE•added 2019/05/23 3:40 p.m.•79 views

CVE-2019-7107

CVE-2019-7107 affects Adobe InDesign ≤14.0.1, due to an unsafe hyperlink processing vulnerability that could lead to arbitrary code execution. The issue is mitigated by applying updates to InDesign 13.1.1 or 14.0.2. Connected sources corroborate the vulnerability, its impact (arbitrary code execu...

10CVSS9.5AI score0.06387EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2019/04/12 12:0 a.m.•23 views

Adobe InDesign CC < 14.0.2 Arbitrary Code Execution Vulnerability (APSB19-23) (macOS)

The version of Adobe InDesign installed on the remote macOS or Mac OS X host is prior to 14.0.2. It is, therefore, affected by a Arbitrary Code Execution vulnerability exists due to unsafe hyperlink processing vulnerability exists Webkit component of MacOS. An authenticated, remote attacker can...

10CVSS8.5AI score0.06387EPSS

Tenable Nessus•added 2019/04/12 12:0 a.m.•68 views

Adobe InDesign 14.0.0 < 14.0.2 Arbitrary Code Execution (APSB19-23)

The version of Adobe InDesign installed on the remote Windows host is prior to 14.0.2. It is, therefore, affected by a vulnerability as referenced in the APSB19-23 advisory. - Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could...

10CVSS7.7AI score0.06387EPSS

OpenVAS•added 2019/04/11 12:0 a.m.•91 views

Adobe InDesign Arbitrary Code Execution Vulnerability (APSB19-23) - Windows

Adobe InDesign is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:indesignserver";...

10CVSS9.7AI score0.06387EPSS

OpenVAS•added 2019/04/11 12:0 a.m.•70 views

Adobe InDesign Arbitrary Code Execution Vulnerability (APSB19-23) - Mac OS X

10CVSS9.7AI score0.06387EPSS