Security Advisory

CVE-2021-45059

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-13 20:27:38

Last updated 2025-04-23 19:12:25

Assigner adobe

State PUBLISHED

Description

Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

← Browse all CVEs View on cve.org ↗