NULL Pointer Dereference Vulnerability in Adobe InDesign Desktop
CVE-2026-34704
5.5MEDIUM
What is CVE-2026-34704?
Adobe InDesign Desktop versions 21.3, 20.5.3, and earlier are vulnerable to a NULL Pointer Dereference issue, which could cause the application to crash and result in denial-of-service. An attacker can exploit this vulnerability by convincing a user to open a specially crafted malicious file, leading to unexpected termination of the application. This highlights the importance of exercising caution with file interactions, especially from untrusted sources.
Affected Version(s)
InDesign Desktop 0 <= 20.5.3