CVE-2026-21275

Name of the Vulnerable Software and Affected Versions InDesign Desktop versions 19.5.5 and earlier InDesign Desktop version 21.0

Description InDesign Desktop versions 19.5.5 and 21.0 are susceptible to an Access of Uninitialized Pointer issue. Successful exploitation of this issue could lead to arbitrary code execution with the privileges of the current user. User interaction is required, specifically, a victim must open a malicious file for exploitation to occur.

Recommendations Update InDesign Desktop to a version later than 21.0. Update InDesign Desktop to a version later than 19.5.5.