CVE-2023-44342
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Feb 29, 2024
CWE ID 125
Summary
CVE-2023-44342 is a newly disclosed vulnerability affecting Adobe InDesign versions ID18.5 and ID17.4.2. The issue involves an out-of-bounds read vulnerability that could result in the disclosure of sensitive memory. Potentially, an attacker could exploit this weakness to bypass Address Space Layout Randomization (ASLR), a security mitigation measure. Notably, for an attack to succeed, a user must open a specially crafted file.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share