3 matches found
CVE-2021-39822
Adobe InDesign (Windows/macOS) 16.3 and 16.3.1 and earlier are affected by CVE-2021-39822, an out-of-bounds write in BMP file parsing that can lead to arbitrary code execution. Exploitation requires user interaction (open a malicious BMP). A fix is available in 16.4.0 or later (per APSB21-73/Ness...
Adobe InDesign <= 16.3 Multiple Arbitrary Code Execution Vulnerabilities (APSB21-73) (macOS)
The version of Adobe InDesign installed on the remote macOS host is prior or equal to 16.3. It is, therefore, affected by multiple arbitrary code execution vulnerabilities, as follows: - Accessing a memory location after the end of the buffer allows an unauthenticated, remote attacker to execute...
Adobe InDesign 16.0 < 16.4.0 Multiple Arbitrary code execution (APSB21-73)
The version of Adobe InDesign installed on the remote Windows host is prior to 16.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-73 advisory. - Access of Memory Location After End of Buffer CWE-788 CVE-2021-40727 - Adobe InDesign versions 16.3 and earlier,...