virus logo Intrusion Prevention

Adobe.InDesign.CVE-2023-29312.Memory.Leak

description-logoDescription

This indicates an attack attempt to exploit an Out-of-Bounds Read vulnerability in Adobe InDesign.
The vulnerability is due to an out-of-bounds memory access when the vulnerable software handles a maliciously crafted QXD file. A remote attacker can exploit this to gain access to sensitive information.

affected-products-logoAffected Products

Adobe InDesign ID18.3 and earlier version
Adobe InDesign ID17.4.1 and earlier version

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/indesign/apsb23-38.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-07-12 25.599 Name:FG-VD-23-004_Adobe.
0day:Adobe.
InDesign.
CVE-2023-29312.
Memory.
Leak
2023-06-26 24.589 Default_action:pass:drop
2023-06-13 24.576

References

https://helpx.adobe.com/security/products/indesign/apsb23-38.html
ID 53284
Created Jun 13, 2023
Updated Jul 11, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2023-29312
Exploit Prediction Score 0.11%
Default Action drop
Active
Affected OS Windows
Affected App Adobe