HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-34700Published Modified CNA adobe

CVE-2026-34700: InDesign Desktop | Out-of-bounds Write (CWE-787)

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Metrics

CVSS v3.1
7.8
Severity
HIGH
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

Out-of-bounds write vulnerability in Adobe InDesign Desktop (versions 21.3, 20.5.3 and earlier) allows an attacker to execute arbitrary code by convincing a victim to open a specially crafted file. The attack does not require network access or any authentication; it is triggered locally when the user opens a malicious document. Successful exploitation gives the attacker full code execution in the context of the logged-in user, enabling data theft, file modification, or further system compromise. No fix version has been published yet; HarborGuard tracks this advisory and will make a patched-image rebuild available as soon as upstream ships a fix.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream feeds within minutes of publication and matched against customer images in registries and CI/CD pipelines, including custom-built images that bundle InDesign Desktop components. Any image found to carry an affected version (20.5.3 or earlier, or 21.3) is flagged automatically.

Available
Triage

HarborGuard scores this finding at CVSS 7.8 HIGH and weights it against each environment's compliance policy to determine routing priority. The resulting alert is directed to the appropriate team inbox within each customer organization based on configured ownership rules.

Available
Patch

Because no upstream fix version has been published, HarborGuard re-evaluates this advisory on every ingest cycle and will make a patched-image rebuild available the moment Adobe ships a corrected release. In the interim, customers can apply compensating controls through HarborGuard's network-policy and workload-isolation recommendations to reduce exposure while the advisory remains open.

Pending upstream

Exploit Conditions

  • Network reachabilityNot required

    The attacker needs an existing shell or process on the host; no over-the-network access to the vulnerable service is required.

  • AuthenticationNot required

    No account or credentials are required; any unauthenticated party who can deliver a file to the victim can trigger the vulnerability.

  • Victim interactionRequired

    The victim must open a malicious file, making this a social-engineering vector where the attacker must deliver a crafted document and persuade the user to open it.

  • Attack complexityDetail

    Attack complexity is low, meaning the exploit is reliable and imposes no special environmental conditions, race windows, or memory-layout requirements on the attacker.

Blast Radius

  • The attacker executes arbitrary code in the context of the logged-in user, gaining the same file-system and process permissions that user holds.
  • Files accessible to the current user, including documents, credentials stored on disk, and application data, are readable and exfiltrable.
  • The attacker can modify or delete files owned by the current user, corrupting project data or planting malicious payloads.
  • The running InDesign process and any child processes it spawns are fully under attacker control, enabling persistence mechanisms or lateral movement from that user context.

How HarborGuard Handles This

Available on HarborGuard: because Adobe has not yet published a fix for CVE-2026-34700, HarborGuard continuously re-checks the advisory on every ingest cycle and will trigger a patched-image rebuild automatically the moment a corrected InDesign Desktop version is released upstream. For customers who opt into auto-remediation, that rebuild will be followed by a regression-test run and a PR opened against affected workloads with no manual intervention required. While the advisory remains open, HarborGuard surfaces compensating-control recommendations including network-policy isolation to restrict what affected workloads can reach, egress filtering to limit data exfiltration paths if a host is compromised, and feature-flag or deployment gating to prevent new images bundling the affected version from being promoted to production. All affected images (those carrying InDesign Desktop 20.5.3 or earlier, or 21.3) remain flagged in every customer registry and pipeline until a clean rebuild is confirmed.

See how HarborGuard automates this
Affected packages
  • Adobe / InDesign Desktop
    ≤ 20.5.3
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References