Adobe.InDesign.CVE-2022-28852.Arbitrary.Code.Execution
Description
This indicates an attack attempt to exploit an Out-of-bounds Write vulnerability in Adobe InDesign.
This vulnerability is due to insufficient handling of maliciously crafted QXD file. It could allow malicious users to create arbitrary code execution scenarios.
Affected Products
Adobe InDesign 17.3 and earlier versions
Adobe InDesign 16.4.2 and earlier versions
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/indesign/apsb22-50.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |