CVE-2023-47077

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 13, 2023

Updated: Dec 14, 2023

CWE ID 125

Summary

CVE-2023-47077 is a newly disclosed vulnerability affecting Adobe InDesign versions 19.0 and earlier, as well as 17.4.2 and earlier. This issue represents an out-of-bounds read vulnerability, making it possible for attackers to access sensitive memory content. By doing so, they could potentially bypass various security mitigations like Address Space Layout Randomization (ASLR). To exploit this weakness, users are required to open a specially crafted file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe InDesign

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tNRwrd
https://www.cve.org/CVERecord?id=CVE-2023-47077
https://nvd.nist.gov/vuln/detail/CVE-2023-47077

Back to Vulnerability Database