How severe is CVE-2026-21275?

CVE-2026-21275 has a CVSS v3 score of 7.8 (HIGH).

CVE-2026-21275

7.8HIGH

InDesign Desktop versions 21.0, 19.5.5 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Ex

Publicado: 1/13/2026Actualizado: 1/14/2026

Descripción

InDesign Desktop versions 21.0, 19.5.5 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Análisis IAImpulsado por IA

Productos Afectados

adobeindesign

applemacos

microsoftwindows

Referencias

https://helpx.adobe.com/security/products/indesign/apsb26-02.html
Vendor Advisory