CVE-2026-27284

Name of the Vulnerable Software and Affected Versions InDesign Desktop versions 20.5.2 and 21.2 and earlier

Description An out-of-bounds read occurs when parsing a crafted file, which can lead to a read past the end of an allocated memory structure. This issue allows an attacker to execute code in the context of the current user, provided the victim opens a malicious file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.