Indesign@* Security Vulnerabilities and Issues — Indesign@* CVE List

Lucene search

AdobeIndesign*

77 matches found

CVE•added 2024/04/10 1:51 p.m.•126 views

CVE-2024-20766

InDesign Desktop versions 18.5.1, 19.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a ...

5.5CVSS5.8AI score0.00023EPSS

CVE•added 2024/07/23 12:15 p.m.•72 views

CVE-2024-41836

InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue ...

5.5CVSS5.5AI score0.00113EPSS

CVE•added 2025/03/11 6:15 p.m.•72 views

CVE-2025-27177

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/11 6:15 p.m.•66 views

CVE-2025-27178

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/11 6:15 p.m.•66 views

CVE-2025-27179

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.3AI score0.00027EPSS

CVE•added 2025/03/11 6:15 p.m.•65 views

CVE-2025-27176

5.5CVSS5.2AI score0.00027EPSS

CVE•added 2025/02/11 5:15 p.m.•62 views

CVE-2025-21157

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2024/07/09 8:15 p.m.•59 views

CVE-2024-20781

InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00182EPSS

CVE•added 2025/02/11 5:15 p.m.•58 views

CVE-2025-21123

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00033EPSS

CVE•added 2025/02/11 5:15 p.m.•58 views

CVE-2025-21125

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.5AI score0.00029EPSS

CVE•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21121

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21126

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service condition. An attacker could exploit this vulnerability to cause the application to crash, resulting in a denial of service. Exploi...

5.5CVSS5.5AI score0.00057EPSS

CVE•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21158

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...

7.8CVSS7.8AI score0.00033EPSS

CVE•added 2024/08/14 3:15 p.m.•55 views

CVE-2024-41850

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0016EPSS

CVE•added 2025/02/11 5:15 p.m.•55 views

CVE-2025-21124

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.3AI score0.00035EPSS

CVE•added 2025/03/11 6:15 p.m.•55 views

CVE-2025-24453

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2024/07/09 8:15 p.m.•52 views

CVE-2024-20785

7.8CVSS7.8AI score0.00182EPSS

CVE•added 2024/08/14 3:15 p.m.•52 views

CVE-2024-41852

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0016EPSS

CVE•added 2025/03/11 6:15 p.m.•52 views

CVE-2025-24452

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/07/09 8:15 p.m.•50 views

CVE-2024-20783

7.8CVSS7.8AI score0.00182EPSS

CVE•added 2024/08/14 3:15 p.m.•50 views

CVE-2024-39390

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00086EPSS

CVE•added 2024/08/14 3:15 p.m.•50 views

CVE-2024-39393

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the cur...

7.8CVSS7.5AI score0.00083EPSS

CVE•added 2024/08/14 3:15 p.m.•50 views

CVE-2024-41851

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0013EPSS

CVE•added 2024/07/09 8:15 p.m.•49 views

CVE-2024-20782

InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00148EPSS

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-34127

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.1AI score0.00021EPSS

CVE•added 2024/11/12 9:15 p.m.•48 views

CVE-2024-49508

InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2025/03/11 6:15 p.m.•48 views

CVE-2025-27171

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/11 6:15 p.m.•47 views

CVE-2025-27166

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/11 6:15 p.m.•47 views

CVE-2025-27175

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2024/08/14 3:15 p.m.•46 views

CVE-2024-39394

7.8CVSS7.9AI score0.00086EPSS

CVE•added 2024/08/14 3:15 p.m.•46 views

CVE-2024-41853

7.8CVSS7.8AI score0.0016EPSS

CVE•added 2024/08/14 3:15 p.m.•46 views

CVE-2024-41854

5.5CVSS5.1AI score0.00022EPSS

CVE•added 2024/11/21 5:15 p.m.•46 views

CVE-2024-49529

InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vi...

5.5CVSS5.3AI score0.00051EPSS

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-39391

7.8CVSS7.9AI score0.00086EPSS

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-39395

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a DoS condition. Exploitation of this issue ...

5.5CVSS5.3AI score0.00061EPSS

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-41866

5.5CVSS5.3AI score0.00113EPSS

CVE•added 2024/11/12 9:15 p.m.•45 views

CVE-2024-49509

InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2024/11/12 9:15 p.m.•45 views

CVE-2024-49511

InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.1AI score0.0006EPSS

CVE•added 2024/08/14 3:15 p.m.•44 views

CVE-2024-39389

7.8CVSS7.8AI score0.00106EPSS

CVE•added 2024/11/12 9:15 p.m.•44 views

CVE-2024-49507

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2024/11/12 9:15 p.m.•44 views

CVE-2024-49512

5.5CVSS5.3AI score0.0006EPSS

CVE•added 2024/11/12 9:15 p.m.•40 views

CVE-2024-49510

5.5CVSS5.1AI score0.0006EPSS

CVE•added 2025/06/10 5:23 p.m.•39 views

CVE-2025-43558

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00042EPSS

CVE•added 2024/10/09 3:15 p.m.•37 views

CVE-2024-45137

InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by uploading a malicious file which, when executed, could run arbitrary cod...

7.8CVSS7.8AI score0.00043EPSS

CVE•added 2025/06/10 5:23 p.m.•36 views

CVE-2025-43589

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00045EPSS

CVE•added 2025/06/10 5:23 p.m.•36 views

CVE-2025-43593

7.8CVSS7.8AI score0.00042EPSS

CVE•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-43590

7.8CVSS7.8AI score0.00042EPSS

CVE•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-47104

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.1AI score0.0003EPSS

CVE•added 2025/06/10 5:21 p.m.•34 views

CVE-2025-30317

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00034EPSS

CVE•added 2025/06/10 5:23 p.m.•34 views

CVE-2025-47105

5.5CVSS5.1AI score0.0003EPSS

Total number of security vulnerabilities77