CVSS: 8.8EPSS: 5%CPEs: 2EXPL: 0CVE-2021-36004 – Adobe InDesign CoolType out of bounds write vulnerability could lead to arbitrary stack manipulation
https://notcve.org/view.php?id=CVE-2021-36004
27 Jul 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability in the CoolType library. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites en la biblioteca CoolType. Un atacante no autentica... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 2%CPEs: 2EXPL: 0CVE-2021-21098 – Adobe InDesign PCX file parsing out-of-bounds write vulnerability could lead to remote code execution
https://notcve.org/view.php?id=CVE-2021-21098
13 May 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites cuando se analiza un archivo diseñado. Un ataca... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 2%CPEs: 3EXPL: 0CVE-2021-21099 – Adobe InDesign PCX file parsing out-of-bounds write vulnerability could lead to remote code execution
https://notcve.org/view.php?id=CVE-2021-21099
13 May 2021 — Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe InDesign versiones 16.0 (y anteriores), está afectada por una vulnerabilidad de escritura fuera de límites cuando se analiza un archivo diseñado. Un ataca... • https://helpx.adobe.com/security/products/indesign/apsb21-22.html • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-24421 – Adobe InDesign 15.1.2 NULL Pointer Dereference Bug
https://notcve.org/view.php?id=CVE-2020-24421
21 Oct 2020 — Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. The impact is limited to causing a denial-of-service of the client application. User interaction is required to exploit this issue. Adobe InDesign versión 15.1.2 (y anteriores) está afectado por un error de derivación del puntero NULL que se produce al manejar un archivo .indd malformado. El impacto se limita a causar una denegación de servicio de la aplicación cliente.... • https://helpx.adobe.com/security/products/indesign/apsb20-66.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9727 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9727
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9729 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9729
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9730 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9730
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2020-9731 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9731
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2020-9728 – Out-of-bounds memory access could lead to code execution
https://notcve.org/view.php?id=CVE-2020-9728
10 Sep 2020 — A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user. Se presenta una vulnerabilidad de corrupción de memoria en InDesign versión 15.1.1 (y versiones anteriores). Un manejo no seguro de un archivo indd malicioso podría ser abusado para causar un acceso a la memoria fuera de límites, resultando potenc... • https://helpx.adobe.com/security/products/indesign/apsb20-52.html • CWE-787: Out-of-bounds Write CWE-788: Access of Memory Location After End of Buffer •
CVSS: 10.0EPSS: 6%CPEs: 3EXPL: 0CVE-2019-7107
https://notcve.org/view.php?id=CVE-2019-7107
23 May 2019 — Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2. Las versiones de Adobe InDesign 14.0.1 y anteriores, tienen una vulnerabilidad de procesamiento de hipervínculo no seguro. Su explotación con éxito podría permitir la ejecución arbitraria de código. • http://www.securityfocus.com/bid/107821 •