VYPR
Unrated severityNVD Advisory· Published Nov 12, 2024· Updated Nov 13, 2024

InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

CVE-2024-49508

Description

InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • Adobe Inc./Indesignllm-fuzzy2 versions
    <= ID18.5.2 / ID19.5+ 1 more
    • (no CPE)range: <= ID18.5.2 / ID19.5
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.