InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Metrics
Affected Vendors & Products
References
History
Thu, 12 Dec 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 12 Dec 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulnerability to crash the application, resulting in a denial of service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue requires user interaction in that a victim must open a malicious file. |
Title | Adobe Indesign 2024 GIF File Parsing Null Pointer Dereference | InDesign Desktop | NULL Pointer Dereference (CWE-476) |
Metrics |
cvssV3_1
|
cvssV3_1
|
Mon, 02 Dec 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Adobe
Adobe indesign Apple Apple macos Microsoft Microsoft windows |
|
CPEs | cpe:2.3:a:adobe:indesign:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Adobe
Adobe indesign Apple Apple macos Microsoft Microsoft windows |
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2024-07-23T11:34:55.471Z
Updated: 2024-12-12T17:23:38.982Z
Reserved: 2024-07-22T17:16:40.934Z
Link: CVE-2024-41836
Vulnrichment
Updated: 2024-08-02T04:46:52.976Z
NVD
Status : Analyzed
Published: 2024-07-23T12:15:10.240
Modified: 2024-12-12T21:09:50.507
Link: CVE-2024-41836
Redhat
No data.