CVE-2021-45058

Name of the Vulnerable Software and Affected Versions Adobe InDesign version 16.4 and earlier

Description The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious JPEG file. This allows a potential attacker to execute code with the privileges of the current user.

Recommendations For Adobe InDesign version 16.4 and earlier, consider avoiding the use of JPEG files from untrusted sources until a patch is available. As a temporary workaround, restrict the ability to open JPEG files in Adobe InDesign to minimize the risk of exploitation.