cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-53951,https://securityvulnerability.io/vulnerability/CVE-2024-53951,,"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49548,https://securityvulnerability.io/vulnerability/CVE-2024-49548,,"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49543,https://securityvulnerability.io/vulnerability/CVE-2024-49543,InDesign Desktop | Stack-based Buffer Overflow (CWE-121),"A stack-based buffer overflow vulnerability exists in InDesign Desktop versions ID19.5, ID18.5.4, and earlier. This vulnerability could allow arbitrary code execution within the context of the affected application's current user session. The exploitation requires user interaction, meaning a user must open a specially crafted malicious file to trigger the issue. It is essential for users to remain vigilant about the files they open in InDesign to mitigate potential security risks.",Adobe,Indesign Desktop,7.8,HIGH,0.0010400000028312206,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49547,https://securityvulnerability.io/vulnerability/CVE-2024-49547,,"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-53952,https://securityvulnerability.io/vulnerability/CVE-2024-53952,,"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49546,https://securityvulnerability.io/vulnerability/CVE-2024-49546,InDesign Desktop | Out-of-bounds Read (CWE-125),"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign Desktop,5.5,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49544,https://securityvulnerability.io/vulnerability/CVE-2024-49544,InDesign Desktop | Out-of-bounds Write (CWE-787),"Adobe InDesign Desktop faces an out-of-bounds write vulnerability that can lead to arbitrary code execution within the context of the currently logged-in user. To exploit this vulnerability, an attacker must entice the user to open a specially crafted malicious file, but it allows for significant risk as it could enable unauthorized actions on the system. Users of affected versions, including ID19.5 and ID18.5.4 and earlier, should exercise caution and ensure they have the latest security updates applied.",Adobe,Indesign Desktop,7.8,HIGH,0.000699999975040555,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49545,https://securityvulnerability.io/vulnerability/CVE-2024-49545,InDesign Desktop | Heap-based Buffer Overflow (CWE-122),"Adobe InDesign Desktop, particularly versions ID19.5, ID18.5.4, and earlier, is susceptible to a heap-based buffer overflow vulnerability. This issue can allow an attacker to execute arbitrary code within the context of the current user. Exploitation of this vulnerability necessitates user engagement, requiring the victim to open a maliciously crafted file. Addressing this vulnerability is crucial to protect users from potential threats and maintain system integrity.",Adobe,Indesign Desktop,7.8,HIGH,0.0010300000431016088,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49549,https://securityvulnerability.io/vulnerability/CVE-2024-49549,InDesign Desktop | Out-of-bounds Read (CWE-125),"InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign Desktop,5.5,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2024-12-10T21:15:00.000Z,0
CVE-2024-49529,https://securityvulnerability.io/vulnerability/CVE-2024-49529,,"InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-11-21T17:15:00.000Z,0
CVE-2024-49511,https://securityvulnerability.io/vulnerability/CVE-2024-49511,,"InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-49507,https://securityvulnerability.io/vulnerability/CVE-2024-49507,Heap-Based Buffer Overflow Vulnerability in InDesign Desktop by Adobe,"A heap-based buffer overflow vulnerability exists in Adobe InDesign Desktop, impacting versions ID18.5.2, ID19.5, and earlier. This security flaw can lead to arbitrary code execution in the context of the user, requiring user interaction for exploitation. Specifically, a victim must open a specially crafted malicious file, potentially compromising their system. Users of the affected versions are advised to ensure that they only open files from trusted sources to mitigate risks associated with this vulnerability.",Adobe,Indesign,7.8,HIGH,0.0006900000153109431,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-49510,https://securityvulnerability.io/vulnerability/CVE-2024-49510,,"InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-49509,https://securityvulnerability.io/vulnerability/CVE-2024-49509,Heap-based Buffer Overflow in InDesign Desktop by Adobe,"A vulnerability exists in InDesign Desktop versions ID18.5.3, ID19.5, and earlier, where a Heap-based Buffer Overflow can occur. This security flaw enables the potential execution of arbitrary code in the context of the user who opens a specially crafted malicious file. User action is required for this exploitation, highlighting the importance of exercising caution when handling untrusted files.",Adobe,Indesign,7.8,HIGH,0.0006900000153109431,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-49512,https://securityvulnerability.io/vulnerability/CVE-2024-49512,,"InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-49508,https://securityvulnerability.io/vulnerability/CVE-2024-49508,Heap-based Buffer Overflow in InDesign Desktop by Adobe,"A Heap-based Buffer Overflow vulnerability exists in the InDesign Desktop application, specifically affecting versions ID18.5.2, ID19.5 and earlier. This vulnerability can potentially allow an attacker to execute arbitrary code within the privileges of the current user. The exploitation of this vulnerability necessitates user interaction, as it requires the victim to open a specially crafted malicious file. Users are advised to refrain from opening files from untrusted sources to mitigate the risk associated with this vulnerability. For further details and remediation steps, refer to the official announcement from Adobe.",Adobe,Indesign,7.8,HIGH,0.0006900000153109431,false,false,false,false,,false,false,2024-11-12T21:15:00.000Z,0
CVE-2024-45137,https://securityvulnerability.io/vulnerability/CVE-2024-45137,Unrestricted File Upload Vulnerability in Adobe InDesign Desktop,"Adobe InDesign Desktop is affected by a vulnerability that allows an unrestricted upload of files with dangerous types, potentially leading to arbitrary code execution on the server where the application is running. Attackers can exploit this flaw by tricking users into uploading malicious files that, when executed, may run arbitrary code in the server's context. This exploit requires user interaction, heightening the importance of user awareness and security measures to mitigate potential risks. Users of affected versions are encouraged to follow security guidelines as outlined by Adobe to enhance their protection against such vulnerabilities.",Adobe,Indesign,7.8,HIGH,0.023520000278949738,false,false,false,false,,false,false,2024-10-09T15:15:00.000Z,0
CVE-2024-39389,https://securityvulnerability.io/vulnerability/CVE-2024-39389,Adobe Indesign PDF File Parsing Stack Based Buffer Overflow Remote Code Execution Vulnerability,"Adobe InDesign Desktop has been identified to have a stack-based buffer overflow vulnerability, affecting versions ID19.4 and ID18.5.2, as well as earlier releases. This vulnerability allows for the possibility of arbitrary code execution when a user opens a specially crafted malicious file. Exploitation necessitates user interaction, emphasizing the importance of caution when handling unknown files, as attackers may leverage this flaw to execute harmful code within the user’s context.",Adobe,Indesign Desktop,7.8,HIGH,0.0014299999456852674,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-39391,https://securityvulnerability.io/vulnerability/CVE-2024-39391,Adobe Indesign XLS File Parsing Out Of Bound Write Remote Code execution vulnerability,"InDesign Desktop, specifically versions ID19.4, ID18.5.2, and earlier, is vulnerable to an out-of-bounds write issue that can lead to arbitrary code execution within the context of the affected user's environment. Successful exploitation necessitates that the victim opens a specifically crafted malicious file. This vulnerability emphasizes the importance of verifying file origins and exercising caution when handling untrusted documents to mitigate potential risks. For comprehensive details on the vulnerability and remediation, refer to the official Adobe security advisory.",Adobe,Indesign Desktop,7.8,HIGH,0.0006399999838322401,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-39390,https://securityvulnerability.io/vulnerability/CVE-2024-39390,Adobe Indesign 2024 DOC File Parsing Memory Corruption,"The out-of-bounds write vulnerability in Adobe InDesign poses a significant threat as it can lead to arbitrary code execution when a user opens a specially crafted malicious file. This vulnerability affects various versions including ID19.4 and ID18.5.2, along with prior releases. The exploitation of this vulnerability necessitates user interaction, making it imperative for users to exercise caution with files from untrusted sources. Implementing protective measures and applying the latest security patches is crucial to mitigate the risks associated with this vulnerability.",Adobe,Indesign Desktop,7.8,HIGH,0.0006399999838322401,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-39395,https://securityvulnerability.io/vulnerability/CVE-2024-39395,,"InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a DoS condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-41852,https://securityvulnerability.io/vulnerability/CVE-2024-41852,Adobe Indesign 2024 AVI File Parsing Stack Based Buffer Overflow,"Adobe InDesign Desktop versions ID19.4, ID18.5.2, and earlier are impacted by a stack-based buffer overflow vulnerability. This vulnerability could allow an attacker to execute arbitrary code within the context of the current user when a malicious file is opened. User interaction is mandatory for exploitation, as the file must be opened by an unsuspecting user. This risk emphasizes the importance of implementing security best practices and awareness regarding the files that are shared and opened.",Adobe,Indesign Desktop,7.8,HIGH,0.0014299999456852674,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-41854,https://securityvulnerability.io/vulnerability/CVE-2024-41854,,"InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-34127,https://securityvulnerability.io/vulnerability/CVE-2024-34127,,"InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0
CVE-2024-41866,https://securityvulnerability.io/vulnerability/CVE-2024-41866,,"InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",Adobe,Indesign,5.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-08-14T15:15:00.000Z,0