CVE-2018-4927Untrusted Search Path in Adobe Indesign

CWE-426Untrusted Search Path3 documents3 sources
Severity
7.8HIGHNVD
EPSS
1.7%
top 17.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Indesign
Timeline
PublishedMay 19
Latest updateMay 14

Description

Adobe InDesign versions 13.0 and below have an exploitable Untrusted Search Path vulnerability. Successful exploitation could lead to local privilege escalation.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDadobe/indesign13.0

🔴Vulnerability Details

2
GHSA
GHSA-c4c3-f77q-3vh4: Adobe InDesign versions 132022-05-14
CVEList
CVE-2018-4927: Adobe InDesign versions 132018-05-19
CVE-2018-4927 — Untrusted Search Path in Adobe Indesign | cvebase