VYPR
Unrated severityNVD Advisory· Published Nov 11, 2025· Updated Feb 26, 2026

InDesign Desktop | Use After Free (CWE-416)

CVE-2025-61815

Description

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • Adobe Inc./Indesignllm-fuzzy2 versions
    20.5, 19.5.5 and earlier+ 1 more
    • (no CPE)range: 20.5, 19.5.5 and earlier
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.