CVE-2023-21588

Name of the Vulnerable Software and Affected Versions Adobe InDesign versions 18.0 and earlier Adobe InDesign versions 17.4 and earlier

Description The issue is related to insufficient input validation in Adobe InDesign, which could allow an attacker to execute arbitrary code. Exploitation of this issue requires user interaction, where a victim must open a malicious file. This can result in arbitrary code execution in the context of the current user.

Recommendations For Adobe InDesign versions 18.0 and earlier, update to a version that addresses the improper input validation issue. For Adobe InDesign versions 17.4 and earlier, update to a version that addresses the improper input validation issue. As a temporary workaround, consider avoiding the opening of files from untrusted sources to minimize the risk of exploitation.