3 matches found
Adobe InDesign 16.x < 16.4.3 / 17.x < 17.4 Multiple Vulnerabilities (APSB22-50)
The version of Adobe InDesign installed on the remote host is prior to 16.4.3. It is, therefore, affected by multiple vulnerabilities, as follows: - An out-of-bounds write vulnerability allows arbitrary code execution in the context of the current user. Exploitation of this issue requires user...
CVE-2022-38414 Adobe InDesign SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Adobe InDesign versions 16.4.2 and earlier and 17.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...
CVE-2022-38414
CVE-2022-38414 affects Adobe InDesign 16.x before 16.4.3 and 17.x before 17.4, with a heap-based buffer overflow in SVG/file parsing that could lead to arbitrary code execution. Exploitation requires user interaction (opening a malicious file). The available connected documents confirm the vulner...