Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Adobe InDesign JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability
Vulnerability Description
Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Vulnerability Type
释放后使用
Vulnerability Title
Adobe InDesign 资源管理错误漏洞
Vulnerability Description
Adobe InDesign是美国奥多比(Adobe)公司的一套排版编辑应用程序。 Adobe InDesign 存在资源管理错误漏洞,该漏洞源于处理文件时出现use-after-free 错误。远程攻击者可以诱骗受害者打开特制文件,触发收费后使用错误并读取系统上的内存内容。
CVSS Information
N/A
Vulnerability Type
N/A