PT-2025-24698 · Adobe · Indesign Desktop

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID20.2, ID19.5.3 and earlier Description: The issue is an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...

CVE-2021-36004

Adobe InDesign version 16.0 and earlier is affected by an Out-of-bounds Write vulnerability in the CoolType library. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user...

Adobe InDesign Out-of-Bounds Write Vulnerability (CNVD-2025-15167)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. An out-of-bounds write vulnerability exists in Adobe InDesign version ID19.5.2 and ID20.2 and earlier versions, which can be exploited by an attacker to execute arbitrary code...

Adobe InDesign Null Pointer Dereference Vulnerability (CNVD-2025-15166)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. A null pointer dereference vulnerability exists in Adobe InDesign version ID19.5.2 and ID20.2 and earlier versions, which can be exploited by an attacker to cause a denial of service in the...

Adobe InDesign Null Pointer Dereference Vulnerability (CNVD-2025-15165)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. A null pointer dereference vulnerability exists in Adobe InDesign version ID19.5.2 and ID20.2 and earlier versions, which can be exploited by an attacker to cause a denial of service...

CVE-2025-30319

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue...

CVE-2025-30320

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30318

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30318

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30320

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30320

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30319

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue...

CVE-2025-30319

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue...

CVE-2025-30320

CVE-2025-30320 affects Adobe InDesign Desktop versions ID19.5.2, ID20.2 and earlier. The vulnerability is a NULL pointer dereference that could crash the application and cause a denial of service. Exploitation requires the user to open a malicious file, i.e., user interaction is needed. Remediati...

CVE-2025-30320 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30320 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requir...

CVE-2025-30319

The CVE-2025-30319 issue affects Adobe InDesign Desktop versions ID19.5.2, ID20.2 and earlier, as listed in multiple feeds. The vulnerability is a NULL Pointer Dereference that can cause an application denial-of-service. Exploitation requires user interaction: a victim must open a malicious file....

CVE-2025-30318 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-30318

Adobe InDesign Desktop (IDs ID19.5.2, ID20.2 and older) is affected by an out-of-bounds write vulnerability (CWE-787) in a core component that could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (the victim must open a malicious file). Multiple conne...

CVE-2025-30319 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue...