CVE-2023-44342

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 29, 2024
CWE ID 125

Summary

CVE-2023-44342 is a newly disclosed vulnerability affecting Adobe InDesign versions ID18.5 and ID17.4.2. The issue involves an out-of-bounds read vulnerability that could result in the disclosure of sensitive memory. Potentially, an attacker could exploit this weakness to bypass Address Space Layout Randomization (ASLR), a security mitigation measure. Notably, for an attack to succeed, a user must open a specially crafted file.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share