CVE-2024-49547 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49547

CVE-2024-49547 affects Adobe InDesign Desktop variants ID19.5, ID18.5.4 and earlier. It is an out-of-bounds read vulnerability that could disclose sensitive memory and bypass ASLR. Exploitation requires user interaction (opening a malicious file). Adobe released APSB24-97 with security updates; o...

CVE-2024-49547 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-53952 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of...

CVE-2024-53952 InDesign Desktop | NULL Pointer Dereference (CWE-476)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of...

CVE-2024-53952

CVE-2024-53952 affects Adobe InDesign Desktop (ID19.5, ID18.5.4 and earlier) and is due to a NULL pointer dereference, causing application denial-of-service. Exploitation requires a user to open a malicious file, leading to a crash which qualifies as a DoS condition. Connected sources corroborate...

CVE-2024-49548

CVE-2024-49548 pertains to Adobe InDesign Desktop, affecting ID19.5, ID18.5.4 and earlier. The issue is an out-of-bounds read that can disclose sensitive memory and bypass mitigations like ASLR. Exploitation requires user interaction: the victim must open a malicious file. Public sources in the c...

CVE-2024-49548 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49548 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49549

CVE-2024-49549 affects Adobe InDesign Desktop versions ID19.5, ID18.5.4 and earlier. The vulnerability is an out-of-bounds read that could disclose sensitive memory and potentially bypass mitigations such as ASLR. Exploitation requires user interaction (the victim must open a malicious file). Mul...

CVE-2024-49544 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-49549 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49544 InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-49549 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49544

CVE-2024-49544 affects Adobe InDesign Desktop (ID19.5, ID18.5.4 and earlier). The issue is an out-of-bounds write that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction—victim must open a malicious file. Connected sources corroborate...

CVE-2024-49546 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49546 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

CVE-2024-49546

CVE-2024-49546 affects Adobe InDesign Desktop versions ID19.5, ID18.5.4 and earlier with an out-of-bounds read that can disclose sensitive memory and bypass ASLR. Exploitation requires a user to open a malicious file. The issue is corroborated by NVD entry for this CVE and supported by the APSB24...

CVE-2024-49545

CVE-2024-49545 affects Adobe InDesign Desktop versions ID19.5, ID18.5.4 and earlier, causing a heap-based buffer overflow that could lead to arbitrary code execution in the current user context. Exploitation requires the user to open a malicious file (user interaction). Public references in the p...

CVE-2024-49545 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...