CVE-2024-39396

NVD Published Date: August 02, 2024 at 07:16 AM
NVD Last Modified: August 02, 2024 at 12:59 PM
Download Patch
Vulnerability ID
CVE-2024-39396
Severity
MEDIUM
Severity Score
5.5
Summary
InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CWE ID
CWE-125

Recent Publish

CVE-2024-39392

CVE-2024-42461

CVE-2024-42459

CVE-2024-3238

CVE-2024-42460

CVE-2024-38776

See SecOps Solution
in action

Schedule Demo