CVE-2023-44346

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 29, 2024

CWE ID 125

Summary

CVE-2023-44346 is a newly disclosed vulnerability affecting Adobe InDesign versions ID18.5 and ID17.4.2. This issue involves an out-of-bounds read vulnerability, which allows an attacker to read sensitive memory content. By doing so, the attacker could potentially bypass Address Space Layout Randomization (ASLR), a security mitigation. To exploit this vulnerability, a user must open a specially crafted file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s0tny5
https://www.cve.org/CVERecord?id=CVE-2023-44346
https://nvd.nist.gov/vuln/detail/CVE-2023-44346

Back to Vulnerability Database

CVE-2023-44346

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations