PT-2025-32924 · Adobe · Indesign Desktop
Published
2025-08-12
·
Updated
2025-08-13
·
CVE-2025-54207
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
InDesign Desktop versions 20.4 and earlier
InDesign Desktop version 19.5.4 and earlier
Description:
InDesign Desktop versions 20.4 and earlier, and version 19.5.4 and earlier, are affected by an Access of Uninitialized Pointer issue. Successful exploitation of this issue could lead to arbitrary code execution within the context of the current user. Exploitation requires a user to open a malicious file.
Recommendations:
Update InDesign Desktop to a version later than 20.4.
Update InDesign Desktop to a version later than 19.5.4.
Fix
Access of Uninitialized Pointer
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Indesign Desktop