Vulnerability Details CVE-2019-7107
Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.064
EPSS Ranking 90.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2019-7107
-
cpe:2.3:a:adobe:indesign:-
-
cpe:2.3:a:adobe:indesign:11.0.1
-
cpe:2.3:a:adobe:indesign:11.1.0
-
cpe:2.3:a:adobe:indesign:11.2.0
-
cpe:2.3:a:adobe:indesign:11.3.0
-
cpe:2.3:a:adobe:indesign:11.4.0
-
cpe:2.3:a:adobe:indesign:11.4.1
-
cpe:2.3:a:adobe:indesign:12.0
-
cpe:2.3:a:adobe:indesign:12.1
-
cpe:2.3:a:adobe:indesign:13.0
-
cpe:2.3:a:adobe:indesign:13.0.1
-
cpe:2.3:a:adobe:indesign:13.1
-
cpe:2.3:a:adobe:indesign:14.0.1
-
cpe:2.3:a:adobe:indesign:3.0
-
cpe:2.3:a:adobe:indesign:3.0.1
-
cpe:2.3:a:adobe:indesign:4.0.0
-
cpe:2.3:a:adobe:indesign:5.0
-
cpe:2.3:a:adobe:indesign:5.0.1
-
cpe:2.3:a:adobe:indesign:5.0.2
-
cpe:2.3:a:adobe:indesign:6.0
-
cpe:2.3:a:adobe:indesign:7.0.2
-
cpe:2.3:a:adobe:indesign:7.0.3
-
cpe:2.3:a:adobe:indesign:7.0.4
-
cpe:2.3:a:adobe:indesign:7.5.1
-
cpe:2.3:a:adobe:indesign:7.5.2
-
cpe:2.3:a:adobe:indesign:7.5.3
-
cpe:2.3:a:adobe:indesign:8.0.1
-
cpe:2.3:a:adobe:indesign:8.0.2
-
cpe:2.3:a:adobe:indesign:8.1.0
-
cpe:2.3:a:adobe:indesign:9.1.0
-
cpe:2.3:a:adobe:indesign:9.2.0
-
cpe:2.3:a:adobe:indesign:9.2.1
-
cpe:2.3:a:adobe:indesign:9.2.2
-
cpe:2.3:a:adobe:indesign:9.3.0
-
cpe:2.3:o:apple:mac_os_x:-
-
cpe:2.3:o:microsoft:windows:-