Indesign Security Vulnerabilities and Issues — Indesign CVE List

Lucene search

AdobeIndesign

48 matches found

cve•added 2025/03/11 6:15 p.m.•72 views

CVE-2025-27177

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/03/11 6:15 p.m.•66 views

CVE-2025-27178

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/03/11 6:15 p.m.•66 views

CVE-2025-27179

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.3AI score0.00027EPSS

cve•added 2025/03/11 6:15 p.m.•65 views

CVE-2025-27176

5.5CVSS5.2AI score0.00027EPSS

cve•added 2025/02/11 5:15 p.m.•62 views

CVE-2025-21157

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00033EPSS

cve•added 2025/02/11 5:15 p.m.•58 views

CVE-2025-21123

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00033EPSS

cve•added 2025/02/11 5:15 p.m.•58 views

CVE-2025-21125

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of thi...

5.5CVSS5.5AI score0.00029EPSS

cve•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21121

7.8CVSS7.9AI score0.00033EPSS

cve•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21126

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service condition. An attacker could exploit this vulnerability to cause the application to crash, resulting in a denial of service. Exploi...

5.5CVSS5.5AI score0.00057EPSS

cve•added 2025/02/11 5:15 p.m.•56 views

CVE-2025-21158

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...

7.8CVSS7.8AI score0.00033EPSS

cve•added 2025/03/11 6:15 p.m.•55 views

CVE-2025-24453

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/02/11 5:15 p.m.•54 views

CVE-2025-21124

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.3AI score0.00035EPSS

cve•added 2025/03/11 6:15 p.m.•52 views

CVE-2025-24452

7.8CVSS7.9AI score0.00029EPSS

cve•added 2025/03/11 6:15 p.m.•48 views

CVE-2025-27171

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/03/11 6:15 p.m.•47 views

CVE-2025-27166

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/03/11 6:15 p.m.•47 views

CVE-2025-27175

7.8CVSS7.8AI score0.00029EPSS

cve•added 2025/06/10 5:23 p.m.•39 views

CVE-2025-43558

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00042EPSS

cve•added 2025/06/10 5:23 p.m.•36 views

CVE-2025-43589

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00045EPSS

cve•added 2025/06/10 5:23 p.m.•36 views

CVE-2025-43593

7.8CVSS7.8AI score0.00042EPSS

cve•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-43590

7.8CVSS7.8AI score0.00042EPSS

cve•added 2025/06/10 5:23 p.m.•35 views

CVE-2025-47104

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...

5.5CVSS5.1AI score0.0003EPSS

cve•added 2025/06/10 5:21 p.m.•34 views

CVE-2025-30317

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00034EPSS

cve•added 2025/06/10 5:23 p.m.•34 views

CVE-2025-47105

5.5CVSS5.1AI score0.0003EPSS

cve•added 2025/06/10 5:23 p.m.•34 views

CVE-2025-47106

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a v...

5.5CVSS5.2AI score0.00036EPSS

cve•added 2025/05/13 5:15 p.m.•33 views

CVE-2025-30319

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue requir...

5.5CVSS6.6AI score0.00034EPSS

cve•added 2025/06/10 5:21 p.m.•32 views

CVE-2025-30321

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires...

5.5CVSS5.2AI score0.00024EPSS

cve•added 2025/05/13 5:15 p.m.•25 views

CVE-2025-30320

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires...

5.5CVSS6.6AI score0.00034EPSS

cve•added 2025/05/13 5:15 p.m.•23 views

CVE-2025-30318

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00048EPSS

cve•added 2025/07/08 10:15 p.m.•10 views

CVE-2025-47103

InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00029EPSS

cve•added 2025/07/08 10:15 p.m.•10 views

CVE-2025-47136

InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00029EPSS

cve•added 2025/07/08 10:15 p.m.•8 views

CVE-2025-43591

7.8CVSS7AI score0.00029EPSS

cve•added 2025/07/08 10:15 p.m.•8 views

CVE-2025-43592

InDesign Desktop versions 19.5.3 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7AI score0.00029EPSS

cve•added 2025/07/08 10:15 p.m.•8 views

CVE-2025-43594

InDesign Desktop versions 19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.1AI score0.00037EPSS

cve•added 2025/07/08 10:15 p.m.•8 views

CVE-2025-47134

7.8CVSS7AI score0.00029EPSS

cve•added 2025/08/12 9:15 p.m.•8 views

CVE-2025-54213

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00034EPSS

cve•added 2025/08/12 9:15 p.m.•8 views

CVE-2025-54226

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00035EPSS

cve•added 2025/08/12 9:15 p.m.•8 views

CVE-2025-54228

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

5.5CVSS6.4AI score0.00024EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54206

7.8CVSS7.6AI score0.00034EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54208

7.8CVSS7.6AI score0.00034EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54211

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00027EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54212

7.8CVSS7.6AI score0.00027EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54224

7.8CVSS7.6AI score0.00035EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54225

7.8CVSS7.6AI score0.00035EPSS

cve•added 2025/08/12 9:15 p.m.•7 views

CVE-2025-54227

5.5CVSS6.4AI score0.00024EPSS

cve•added 2025/08/12 9:15 p.m.•6 views

CVE-2025-54207

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.5AI score0.00027EPSS

cve•added 2025/08/12 9:15 p.m.•6 views

CVE-2025-54209

7.8CVSS7.6AI score0.00027EPSS

cve•added 2025/08/12 9:15 p.m.•6 views

CVE-2025-54210

7.8CVSS7.6AI score0.00034EPSS

cve•added 2025/08/12 9:15 p.m.•6 views

CVE-2025-54214

5.5CVSS6.4AI score0.00024EPSS