The version of Adobe InDesign installed on the remote macOS host is prior or equal to 16.3. It is, therefore, affected by multiple arbitrary code execution vulnerabilities, as follows:

  - Accessing a memory location after the end of the buffer allows an unauthenticated, remote attacker to     execute arbitrary code. (CVE-2021-39820)

  - Out-of-bounds-reads allows a local attacker to execute arbitrary code. (CVE-2021-39821, CVE-2021-39822)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Adobe InDesign <= 16.3 Multiple Arbitrary Code Execution Vulnerabilities (APSB21-73) (macOS)

high Nessus Plugin ID 153438

No changelogs found