CVE-2020-9729
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | InDesign | unspecified <= 15.1.1 | affected |
| Adobe | InDesign | unspecified <= None | affected |
Weaknesses
- CWE-788: Access of Memory Location After End of Buffer (CWE-788)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.