3 matches found
Adobe InDesign 16.x < 16.4.3 / 17.x < 17.4 Multiple Vulnerabilities (APSB22-50)
The version of Adobe InDesign installed on the remote host is prior to 16.4.3. It is, therefore, affected by multiple vulnerabilities, as follows: - An out-of-bounds write vulnerability allows arbitrary code execution in the context of the current user. Exploitation of this issue requires user...
CVE-2022-38416 Adobe InDesign SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
Adobe InDesign versions 16.4.2 and earlier and 17.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context...
CVE-2022-38416
CVE-2022-38416 affects Adobe InDesign versions 16.4.2 and earlier, and 17.3 and earlier, with an out-of-bounds read when parsing a crafted file that could allow code execution under the user’s context. Exploitation requires user interaction (opening a malicious file). Public remediation in connec...