CVE-2018-4928Improper Restriction of Operations within the Bounds of a Memory Buffer in Adobe Indesign

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
7.8HIGHNVD
EPSS
2.2%
top 15.50%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Indesign
Timeline
PublishedMay 19
Latest updateMay 14

Description

Adobe InDesign versions 13.0 and below have an exploitable Memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDadobe/indesign13.0

🔴Vulnerability Details

2
GHSA
GHSA-27h2-5v2f-w3w2: Adobe InDesign versions 132022-05-14
CVEList
CVE-2018-4928: Adobe InDesign versions 132018-05-19
CVE-2018-4928 — Adobe Indesign vulnerability | cvebase