CVE-2025-21126

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID20.0, ID19.5.1 and earlier

Description: The issue is related to an improper input validation vulnerability that could result in an application denial-of-service condition. An attacker could exploit this vulnerability to cause the application to crash, resulting in a denial of service. Exploitation of this issue requires user interaction, as the victim must open a malicious file.

Recommendations: For versions ID20.0, ID19.5.1 and earlier, avoid opening files from untrusted sources to minimize the risk of exploitation. As a temporary workaround, consider restricting the ability to open files in the application until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.