{"id":64319,"date":"2025-08-26T02:26:19","date_gmt":"2025-08-26T02:26:19","guid":{"rendered":""},"modified":"2025-10-11T22:30:41","modified_gmt":"2025-10-12T04:30:41","slug":"cve-2025-47103-heap-based-buffer-overflow-vulnerability-in-indesign-desktop","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-47103-heap-based-buffer-overflow-vulnerability-in-indesign-desktop\/","title":{"rendered":"CVE-2025-47103: Heap-Based Buffer Overflow Vulnerability in InDesign Desktop<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

The vulnerability, officially designated as CVE-2025-47103, poses a significant threat to users of InDesign Desktop versions 19.5.3 and earlier. This vulnerability, a Heap-based Buffer Overflow, could lead to arbitrary code execution, potentially compromising the system or leading to data leakage. It primarily affects graphic designers, publishers, and other professionals reliant on Adobe’s InDesign software, who may unknowingly become victims of cyber attacks if they inadvertently open a malicious file.
\nThis vulnerability matters because of the potential<\/a> for a skilled attacker to execute arbitrary code in the context of the current user. It’s notable that the severity of this vulnerability is elevated<\/a> due to the required user interaction, which is a common point of exploit for cyber attackers.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-47103
\nSeverity: High (CVSS: 7.8)
\nAttack Vector: Opening a malicious file
\nPrivileges Required: None
\nUser Interaction: Required
\nImpact: Potential system compromise or data leakage<\/a><\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n