Описание
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 19.5.2 (исключая)
Одновременно
Одно из
cpe:2.3:a:adobe:indesign:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:indesign:20.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
Дефекты
CWE-191
Связанные уязвимости
CVSS3: 7.8
github
12 месяцев назад
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
Дефекты
CWE-191