CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2021-42731 – Adobe Indesign Buffer Overflow Could Lead to Remote Code Execution
https://notcve.org/view.php?id=CVE-2021-42731
16 Nov 2021 — Adobe InDesign versions 16.4 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.4 (y anteriores), están afectadas por una vulnerabilidad de desbordamiento del búfer cuando es analizado un archivo especi... • https://helpx.adobe.com/security/products/indesign/apsb21-107.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 10%CPEs: 4EXPL: 0CVE-2021-39821 – Adobe InDesign TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-39821
16 Sep 2021 — Adobe InDesign versions 16.3 (and earlier), and 16.3.1 (and earlier) are affected by an out-of-bounds read vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious TIF file. Adobe InDesign versiones 16.3 (y anteriores), y versiones 16.3.1 (y anteriores), están afectadas por una vulnerabilidad de lectura fuera de límites que podría resultar en una ejecución de código arbitrario e... • https://helpx.adobe.com/security/products/indesign/apsb21-73.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-39822 – Adobe InDesign BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-39822
16 Sep 2021 — Adobe InDesign versions 16.3 (and earlier), and 16.3.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious BMP file. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a m... • https://helpx.adobe.com/security/products/indesign/apsb21-73.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 5%CPEs: 2EXPL: 0CVE-2021-36004 – Adobe InDesign CoolType out of bounds write vulnerability could lead to arbitrary stack manipulation
https://notcve.org/view.php?id=CVE-2021-36004
27 Jul 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability in the CoolType library. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites en la biblioteca CoolType. Un atacante no autentica... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 2%CPEs: 2EXPL: 0CVE-2021-21098 – Adobe InDesign PCX file parsing out-of-bounds write vulnerability could lead to remote code execution
https://notcve.org/view.php?id=CVE-2021-21098
13 May 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites cuando se analiza un archivo diseñado. Un ataca... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 2%CPEs: 3EXPL: 0CVE-2021-21099 – Adobe InDesign PCX file parsing out-of-bounds write vulnerability could lead to remote code execution
https://notcve.org/view.php?id=CVE-2021-21099
13 May 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites cuando se analiza un archivo diseñado. Un ataca... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-24421 – Adobe InDesign 15.1.2 NULL Pointer Dereference Bug
https://notcve.org/view.php?id=CVE-2020-24421
21 Oct 2020 — Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. The impact is limited to causing a denial-of-service of the client application. User interaction is required to exploit this issue. Adobe InDesign versión 15.1.2 (y anteriores) está afectado por un error de derivación del puntero NULL que se produce al manejar un archivo .indd malformado. El impacto se limita a causar una denegación de servicio de la aplicación cliente.... • https://helpx.adobe.com/security/products/indesign/apsb20-66.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9727 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9727
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9729 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9729
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9730 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9730
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •