Indesign@* Security Vulnerabilities and Issues — Indesign@* CVE List

Lucene search

AdobeIndesign*

34 matches found

CVE•added 2025/03/11 6:15 p.m.•71 views

CVE-2025-27177

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/03/11 6:15 p.m.•65 views

CVE-2025-27178

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/03/11 6:15 p.m.•64 views

CVE-2025-27179

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.3AI score0.00037EPSS

CVE•added 2025/03/11 6:15 p.m.•63 views

CVE-2025-27176

5.5CVSS5.2AI score0.00037EPSS

CVE•added 2025/02/11 5:15 p.m.•59 views

CVE-2025-21157

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2025/02/11 5:15 p.m.•57 views

CVE-2025-21123

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/02/11 5:15 p.m.•57 views

CVE-2025-21125

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.5AI score0.00027EPSS

CVE•added 2025/02/11 5:15 p.m.•55 views

CVE-2025-21121

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2025/02/11 5:15 p.m.•55 views

CVE-2025-21126

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service condition. An attacker could exploit this vulnerability to cause the application to crash, resulting in a denial of service. Exploi...

5.5CVSS5.5AI score0.00053EPSS

CVE•added 2025/02/11 5:15 p.m.•55 views

CVE-2025-21158

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/11 6:15 p.m.•54 views

CVE-2025-24453

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/02/11 5:15 p.m.•53 views

CVE-2025-21124

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.3AI score0.00031EPSS

CVE•added 2025/03/11 6:15 p.m.•49 views

CVE-2025-24452

7.8CVSS7.9AI score0.0004EPSS

CVE•added 2025/03/11 6:15 p.m.•47 views

CVE-2025-27171

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/03/11 6:15 p.m.•46 views

CVE-2025-27175

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/03/11 6:15 p.m.•45 views

CVE-2025-27166

7.8CVSS7.8AI score0.0004EPSS

CVE•added 2025/06/10 5:23 p.m.•37 views

CVE-2025-43558

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-43589

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-43593

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2025/06/10 5:23 p.m.•33 views

CVE-2025-43590

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2025/06/10 5:23 p.m.•33 views

CVE-2025-47104

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.1AI score0.00026EPSS

CVE•added 2025/06/10 5:23 p.m.•33 views

CVE-2025-47105

5.5CVSS5.1AI score0.00026EPSS

CVE•added 2025/06/10 5:23 p.m.•33 views

CVE-2025-47106

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a v...

5.5CVSS5.2AI score0.00032EPSS

CVE•added 2025/05/13 5:15 p.m.•32 views

CVE-2025-30319

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue requir...

5.5CVSS6.6AI score0.00024EPSS

CVE•added 2025/06/10 5:21 p.m.•31 views

CVE-2025-30317

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/06/10 5:21 p.m.•31 views

CVE-2025-30321

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires...

5.5CVSS5.2AI score0.00021EPSS

CVE•added 2025/05/13 5:15 p.m.•24 views

CVE-2025-30320

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires...

5.5CVSS6.6AI score0.00024EPSS

CVE•added 2025/05/13 5:15 p.m.•22 views

CVE-2025-30318

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00042EPSS

CVE•added 2025/07/08 10:15 p.m.•7 views

CVE-2025-43592

InDesign Desktop versions 19.5.3 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00027EPSS

CVE•added 2025/07/08 10:15 p.m.•7 views

CVE-2025-47134

InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00027EPSS

CVE•added 2025/07/08 10:15 p.m.•7 views

CVE-2025-47136

InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00027EPSS

CVE•added 2025/07/08 10:15 p.m.•6 views

CVE-2025-43591

7.8CVSS7AI score0.00027EPSS

CVE•added 2025/07/08 10:15 p.m.•6 views

CVE-2025-43594

InDesign Desktop versions 19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.1AI score0.00034EPSS

CVE•added 2025/07/08 10:15 p.m.•5 views

CVE-2025-47103

7.8CVSS7AI score0.00027EPSS