CVE-2025-43589 InDesign Desktop | Use After Free (CWE-416)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30317 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30317 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30317

InDesign Desktop (ID20.2, ID19.5.3 and earlier) is affected by a Heap-based Buffer Overflow vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Several connected sources corroborate...

CVE-2025-43558 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43558 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43558

The CVE-2025-43558 entry applies to Adobe InDesign Desktop versions ID20.2, ID19.5.3 and earlier, with an out-of-bounds write vulnerability that could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (victim must open a specially crafted file). The issu...

CVE-2025-47104 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-47105 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-47105

Adobe InDesign Desktop (Windows) is affected by an out-of-bounds read in ID20.2, ID19.5.3 and earlier, potentially leaking memory and bypassing ASLR. Exploitation requires a user to open a malicious file. Connected advisories confirm fixes in APSB25-53; users should upgrade to released patches (e...

CVE-2025-47104

InDesign Desktop, affected versions ID20.2, ID19.5.3 and earlier, suffer an out-of-bounds read that can disclose memory and bypass mitigations like ASLR. Exploitation requires user interaction (victim opens a malicious file). Adobe has issued a security update (APSB25-53) addressing these vulnera...

CVE-2025-47104 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-47105 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2025-43593 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43593

Summary (CVE-2025-43593) : InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that can lead to arbitrary code execution in the current user context. Exploitation requires user interaction (victim opens a malicious file). Multiple connected ...

CVE-2025-43593 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-47106

Affected product: Adobe InDesign Desktop (ID20.2, ID19.5.3 and earlier). The CVE-2025-47106 issue is a Use After Free vulnerability that could disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Public details across connected sources confirm m...

CVE-2025-47106 InDesign Desktop | Use After Free (CWE-416)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2025-43590 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43590

CVE-2025-43590 affects Adobe InDesign Desktop versions ID20.2, ID19.5.3 and earlier, due to an out-of-bounds write that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). Multiple sources (inclu...