Adobe InDesign 15.1.2 (and earlier) NULL Pointer Dereference Denial-of-Service Vulnerability

CVE-2020-24421 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Adobe InDesign version 15.1.2 (and earlier) is affected by a NULL pointer dereference bug that occurs when handling a malformed .indd file. The impact is limited to causing a denial-of-service of the client application. User interaction is required to exploit this issue.

Learn more about our User Device Pen Test.